Associate Detection & Response Analyst (Associate SOC Analyst)

Save to Kiter
What Expel is looking for in applicants

You know that NOP sleds don’t go down snowbanks, and that IR isn’t just on the electromagnetic spectrum. In fact, you’ve owned a few boxes with Metasploit, maybe even tinkered with exploit code. You were really excited the first time you got a reverse shell. Meterpreter might be your payload of choice, maybe even Beacon. You have a lab where you’re spending less time in a Command shell, and more time in PowerShell. You love to solve problems, you’re curious to a fault, and obsessed with learning.

Or maybe you’ve focused just on defense. You remind anyone that will listen to you to update and patch. You understand TCP/IP, know how to analyze pcap files and write detections to defend networks (labs count!). You know ways malware can survive a reboot and how to gather evidence that can prove a file previously executed. You’re constantly reading articles and asking yourself, “how would I detect this?”

Do you dig the breadth and diversity that is the threat landscape? Are you motivated by curiosity to pursue investigative leads and even hunt for attacker activity? Have you gotten a handle on the basics of security analysis and are itching to wield your powers in live environments?

Well then, we'd love to speak with you. Serving as a Security Analyst at Expel may be just what you're looking for. Not only will you help our customers stay safe, you'll learn how to think like an attacker, respond to real attacks, and be encouraged to innovate and solve problems. Surrounded by seasoned analysts, you'll have no shortage of mentors eager to help you master the art.

What Expel Can Do For You

  • Get you out of the lab and into real networks with real evil
  • Give you an opportunity to learn from seasoned security analysts and incident responders every single day
  • Ensure your voice is heard & tied directly to our business direction
  • Provide an entertaining small and highly transparent startup environment
  • Challenge you to push the bounds of our security vision

What You Can Do For Expel (with the help of training, of course)

  • Direct your real passion for information security at protecting our customers
  • Participate in our 24x7 shift rotation: x hours, y days, something. If nights are more your thing, please let us know!
  • Be perpetually dissatisfied with the state of affairs, then help us get better
  • Help us meaningfully impact the security of our customers' organizations
  • Once we bring you up to speed, constantly experiment to find new ways of catching bad guys

What You Should Bring With You

  • A bachelor's degree in a technical field or a good (or creative) excuse
  • Flexibility and an openness to new challenges because, hey, startup life
  • An inquisitive mind and a noble spirit
  • A keen sense of humor
  • A fundamental understanding of TCP/IP and core application layer protocols
  • Fluency with Windows operating systems and command line tools
  • Familiarity with cloud applications (O365, Okta, etc) and cloud infrastructure (AWS, GCP, Azure)
  • Experience with tools used for forensic acquisition and analysis
  • Familiarity with the attack lifecycle (or kill chain, if you prefer)
  • If you've got offensive security and/or scripting skills, that's a plus

Additional Notes

We're looking to hire someone to work from our offices in Herndon, Virginia, or remote from your home office with occasional travel as required.

We're only hiring those authorized to work in the United States. We do not currently sponsor immigration visas.

We're an Equal Opportunity Employer: You'll receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.


Want some tips on how to get an interview at Expel?

What is Expel looking for?
If this role looks interesting to you, a great first step is to understand what excites you about the team, product or mission. Take your time thinking about this and then tell the team! Get in touch and communicate that passion.
What are interviews for Associate Detection & Response Analyst (Associate SOC Analyst) like?
Interview processes vary by company, role and team. The best plan is to see what others have experienced and then plan accordingly.
How to land an interview at Associate Detection & Response Analyst (Associate SOC Analyst)?
A great first step is organizing your path to an offer. Check out Kiter for tools to get started!