CyberSOC Consultant

SRA’s mission is to level up every day to protect our clients and their customers. This begins with our team members and their experience. SRA prides itself on maintaining a culture where team members have a shared sense of support and belonging, consistent with our It’s Personal company value. At SRA, we prioritize transparent career pathing, varied DEI programming and community groups, competitive benefits including mental health support, and an emphasis on a sustainable, healthy, and engaging work culture. SRA has twice been named a Best Place to Work by the Philadelphia Business Journal.

These Essential Functions, Requirements, and Skills are guidelines. If you are a candidate who does not meet this exact job description but can demonstrate excellent organization, attention to detail, professionalism, flexibility, and self-direction in your professional background, we hope you apply. SRA values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, and veterans to apply.

Summary/Objective

The Cybersecurity Operations Consultant is an entry-level role on Security Risk Advisors’ CyberSOC team. You will help monitor, triage, and investigate security alerts across endpoint, network, identity, and cloud data sources, and you will document and communicate findings suitable for client consumption. This role supports 24x7 SOC operations and provides exposure to multiple client environments, modern security tooling, and structured mentorship and training.

Essential Functions

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Continuously monitor and triage security alerts across endpoint, network, identity, and cloud telemetry.
• Investigate alerts to determine severity, scope, and whether activity is benign, suspicious, or malicious; escalate per documented procedures.
• Perform initial incident response support activities such as evidence collection, timeline development, and basic containment recommendations under supervision.
• Use SIEM, EDR, NDR/NSM, and SOAR platforms to detect, investigate, and respond to threats; examples include Splunk or Microsoft Sentinel (SIEM), CrowdStrike Falcon or Microsoft Defender for Endpoint (EDR).
• Leverage threat intelligence and common frameworks (e.g., MITRE ATT&CK) to enrich investigations and communicate attacker behavior clearly.
• Thoroughly document work in case management systems, including investigation steps taken, evidence reviewed, decisions made, and recommended next actions.
• Communicate status and findings to internal leadership and clients with professionalism and clarity (written and verbal).
• Contribute to continuous improvement by identifying recurring false positives/noisy alerts and providing feedback for tuning and playbook updates.
• Maintain proficiency through required training, labs, and knowledge sharing; follow policies to protect confidential information.

Supervisory Responsibility

Not applicable.

Work Environment

This job operates in a professional office environment or remotely as needed/required. This role routinely uses standard office equipment.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. While performing the duties of this job, the employee is regularly required to talk and hear; use hands to finger, handle, or feel; and reach with hands and arms. The employee frequently is required to stand and walk. This is a largely sedentary role.

Candidates with disabilities are encouraged to apply and email [email protected] with any questions. Reasonable accommodations may be made to enable disabled individuals to perform the essential functions of this role.

Position Type/Expected Hours of Work

This is a full-time position with 40 working hours expected weekly, typically worked over five consecutive days. New hires may be assigned to any of our three daily shifts (morning, day, or night) and will work a schedule that includes either Saturday or Sunday. Shifts are assigned based on current coverage needs and resource geolocation. Once assigned, you can expect a consistent shift week to week.

This listing/description is for our team’s Red Shift, which runs from 8:00 a.m. – 5:00 p.m. EST .

Travel

• Occasional travel may be requested for onboarding and training (e.g., to an SRA office).
• Team members who live within reasonable distance of an office are encouraged to work from the office regularly for mentorship, experience, and exposure, based on business needs and role requirements.

Required Education and Experience

• Bachelor’s degree in Information Technology, IT Security, Computer Science, Computer Engineering, or equivalent experience.
• 1-3 years of professional experience, campus applicants are welcome.
• Punctuality and timely attendance to external client and internal stakeholder needs.

Preferred Qualifications and Experience

• Coursework, labs, internship, or work experience in one or more of: incident investigation, digital forensics fundamentals, information security, systems administration, or computer networking.
• Familiarity with common log sources and security concepts (e.g., authentication logs, Windows event logs, DNS, email security).
• Comfort learning new tools and following documented processes; strong attention to detail and case documentation habits.
• Strong written and verbal communication skills and a high level of professionalism in client-facing environments.
• Ability to work effectively on a team while owning independent tasks and meeting deadlines.
• Interest in automation/scripting (e.g., PowerShell or Python)
• Security certifications (e.g., SC-200, Security+, Network+, etc.).

Other Duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.

EEO Statement

Security Risk Advisors is an Equal Opportunity Employer and prohibits discrimination or harassment of any kind. All employment decisions at SRA are based on business needs, job requirements, and individual qualifications, without regard to race, color, sex, sexual orientation, gender identity or expression, age, religion, national origin, disability, marital or family status, veteran status, medical condition, or any similar category protected under federal, state, or local laws.

Work with Experts : Robust internal training program, plus Company-paid external training. SRA recognizes the value of professional development for employees. Therefore, we encourage our employees to pursue continuing education and role-specific training. Every SRA employee is eligible to attend one training per year paid for by SRA.

Corps Training Program : Our SRA Corps training program is a six-week experience for May new hires that begins with one week of orientation at our Philadelphia headquarters. Whether new hires are interns, co-ops, or full-time consultants, SRA Corps members meet our founders, learn our values, and experience a day in the life of a cybersecurity consultant. Following orientation, Corps members return to their home office and participate in trainings such as Consulting 101, Enterprise Networks, Cloud Security and more. Our leaders provide hands-on offensive, defensive, and frameworks boot camps.

Mental Health Services : SRA has partnered with BetterHelp to provide SRA employees with free mental health support. BetterHelp connects individuals with licensed therapists for chat, video, and phone sessions.

Medical / Dental / Other (regular full-time employees only)

• Generous medical, dental, and vision benefits at different price points.
• Company-paid disability and life insurance.
• Company 401(k) plan including annual 3% safe harbor contribution.
• Free patient advocacy service that helps find care providers and resolve insurance queries.
• Free on-site wellness programming covering both emotional and physical wellness.
• Generous parental leave, sick leave, and vacation policies.
• Option to work remotely or with a flexible schedule when needed.
• Company-paid cell phone with discounted accessories.
• 1-2-3 Give Program: 1. SRA will give $1,000 to a charity of your choice. 2. If you give an additional amount (up to $1,000), then 3. SRA will match that amount up to $1,000.

(Subject to change)

To find out more about us, please visit our website at: