Cetera

Senior Security Operations Engineer

Cetera · Dallas, Texas, United States · $106K–$141K/yr

Financial Services · 501-1,000 employees

2 d ago
Senior (5-10 yrs) Full-time United States
Log in to apply, save this posting, or score it against your profile with AI.

About the role

Monitor and triage security events across multiple platforms to detect and respond to potential threats and incidents. Perform in-depth investigations, conduct proactive threat hunting, and collaborate with cross-functional teams to improve security posture.

What they look for

SIEM Incident Response Threat Hunting Microsoft 365 Defender AWS Security EDR Malware Analysis Log Correlation MITRE ATT&CK Netskope Proofpoint Tanium Qualys Network Security Identity and Access Management Vulnerability Management

Requirements

Requires over 5 years of experience as a SOC Analyst and in incident response procedures. Must have 3+ years of hands-on experience with tools like NexGen SIEM, M365 Security Suite, and EDR solutions.

Benefits

Health Insurance Dental Insurance Vision Insurance Life Insurance Mental Health Benefits Paid Time Off Paid Holidays Wellness Days 401(k) Savings Plan Paid Parental Leave Health Savings Account Flexible Spending Account Employee Assistance Program LifeLock Pet Insurance

Full description

We are at the forefront of transforming the future of technology in the financial industry, and we seek curious, practical individuals to help us pave the way. Our team is not intimidated by taking calculated risks, as they relish a good challenge and are eager to engage in problem-solving. As a member of our team, you will work alongside like-minded experts in a culture that is deeply rooted in innovation and progression. Join us to be part of a transformative journey that can shape the industry's future. We are seeking a skilled and experienced SOC Analyst to play a crucial role in monitoring and analyzing our organization's security infrastructure, detecting and responding to potential threats and incidents, and ensuring the overall security of our systems.

What you will do:

  • Continuously monitor and triage security events and alerts across multiple platforms—such as Next-Gen SIEM, Microsoft 365 Defender, AWS native security, and other enterprise security tools—to identify anomalous activity, policy violations, and potential indicators of compromise (IOCs). This includes validating alert fidelity, escalating true positives, suppressing false positives, and maintaining situational awareness across the environment.
  • Perform in depth analysis and investigation of security incidents by correlating logs, endpoint telemetry, network traffic, identity activity, and threat intelligence to determine root cause, scope, impact, MITRE ATT&CK technique alignment, and potential business risk. This includes detailed investigation timelines, document evidence, and recommend containment, eradication, and recovery actions.
  • Conduct proactive threat hunting using hypotheses based on emerging threats, adversary TTPs, behavioral analytics, and environmental risk indicators. Leverage SIEM queries, EDR telemetry, cloud audit logs, and threat intel feeds to identify stealthy threats such as lateral movement, persistence mechanisms, privilege misuse, or unauthorized data access.
  • Develop clear, concise, and accurate reports on security incidents, active threats, root cause findings, vulnerabilities, and trending patterns for SOC management, InfoSec leadership, and cross functional stakeholders. This includes post incident summaries, incident metrics, threat trend analysis, and recommendations to strengthen preventive and detective controls.
  • Collaborate closely with internal technology teams—including Cloud Engineering, Network Security, IAM, DevOps, and Governance/Risk/Compliance—to enhance security policies, improve detection coverage, update response playbooks, refine log source onboarding, and support the continuous maturation of the SOC’s operational processes. Participate in tabletop exercises, control tuning, and strategic security initiatives to improve the organization’s security posture.
  • Adhere to established Security Operations Center service-level agreements (SLAs) for alert triage, investigation, escalation, and incident response to ensure timely risk mitigation and operational efficiency. Additionally, maintain SLA compliance for incident documentation, ticket updates, handoff notes, and closure guidelines aligned with SOC operating procedures and regulatory expectations.
  • Participate in the SOC on call rotation to provide after hours support for high severity security incidents, urgent investigations, and priority escalations. Responsibilities include responding to critical/high alerts within defined SLA timeframes, coordinating with cross functional teams during major incidents, and ensuring continuous coverage to maintain 24/7 operational readiness.
  • Participate in other duties as assigned to support overall Security Operations Center efficiency and organizational objectives.

What you will have:

  • 5+ years of experience working as a SOC Analyst or in a similar role.
  • 3+ years of both knowledge and hands-on experience with NexGen SIEM, M365 Security Suite, Netskope, Proofpoint, Tanium, EDR solutions, and Qualys.
  • 5+ years of experience with incident response procedures and methodologies.
  • 5+ years of experience with specialized tools for analyzing malicious emails, malware, viruses, etc.

About Us

What we give you in return:

Not many teams can say that they support people’s dreams coming to life… We happen to do that every day. And as important as we know your career is, we recognize that there’s a whole lot more to life. To ensure that our Employees can make the most of their time outside of working hours, we offer a competitive salary and for full-time roles, a benefits package including:

  • Inclusive health, dental, vision and life insurance plans built to support diverse lifestyles, offer preventative care, and protect against hardship.
  • Easy access to mental health benefits to meet our team members and their families where they are.
  • 20 plus days of paid time off (PTO), paid holidays, and 2 paid wellness days to give our employees the time they need to stay close with their loved ones, recharge, and give back to their communities.
  • 401(k) Savings plan with a generous company contribution (up to 5%), and access to a financial professional to offer our employees the opportunity to plan-ahead for a strong financial future well beyond their working years.
  • Paid parental leave to support all team members with birth, adoption, and foster.
  • Health Savings and Flexible Spending Account options to help you save money on healthcare, daycare, commuting, and more.
  • Employee Assistance Program (EAP), LifeLock, Pet Insurance and more.

About Cetera Financial Group:

Cetera Financial Group® ("Cetera") is a leading network of independent retail broker-dealers empowering the delivery of objective financial advice to individuals, families and company retirement plans across the country through trusted financial advisors and financial institutions. Cetera is one of the largest independent financial advisor networks in the nation by number of advisors, as well as a leading provider of retail services to the investment programs of banks and credit unions.

Through its multiple distinct firms, Cetera offers independent and institutions-based advisors the benefits of a large, established broker-dealer and registered investment adviser, while serving advisors and institutions in a way that is customized to their needs and aspirations. Advisor support resources offered through Cetera include award-winning wealth management and advisory platforms, comprehensive broker-dealer and registered investment adviser services, practice management support, and innovative technology.

"Cetera Financial Group" refers to the network of independent retail firms encompassing, among others, Cetera Advisors LLC, Cetera Wealth Services LLC (f/k/a Cetera Advisor Networks), Cetera Investment Services LLC (marketed as Cetera Financial Institutions, or Cetera Investors. All firms are members FINRA/SIPC.

Cetera Financial Group is committed to providing an equal employment opportunity for all applicants and employees. For us, this is the only acceptable way to do business. Accordingly, all employment decisions at Cetera Financial Group, including those relating to hiring, promotion, transfers, benefits, compensation, and placement, will be made without regard to race, color, ancestry, national origin, citizenship, age, physical and/or mental disability, medical condition, pregnancy, genetic characteristics, religion, religious dress and/or grooming, gender, gender identity, gender expression, sexual orientation, marital status, U.S. military status, political affiliation, or any other class protected by state and/or federal law.

Agencies please note: this recruitment assignment is being managed directly by Cetera’s Talent Acquisition team. We will reach out to our preferred agency partners in the rare instance we require additional talent options. Your respect for this process is appreciated.

Please review our Workforce Privacy Policy for further details on what information we collect and the purposes for collection.