The Junior/Mid MDR Analyst is responsible for investigating and triaging EDR/XDR incidents within the Acronis MDR service. This role focuses on accurate detection analysis, execution of predefined remediation steps, and clear customer communication, while contributing to continuous service improvement.
The analyst will work closely with senior team members and the AI engineering team to enhance automation and integrate Agentic AI capabilities into the MDR workflow. This is a growth-oriented role, with opportunities to advance into proactive threat hunting and advanced incident response.
WHAT YOU'LL DO
Investigate incoming EDR/XDR incidents, focusing on accurate triage and severity assessment
Execute remediation actions such as workload isolation, following established playbooks
Document investigation steps and maintain complete case records
Collaborate with AI engineering to test and refine automated triage and response processes
Escalate complex incidents to senior analysts, providing relevant context and evidence
Support development and refinement of playbooks, automation rules, and incident correlation logic
Communicate clearly with customers via email and phone about incident status and recommendations
Stay informed about current security threats and attacker techniques
Work 5-day/8-hour schedule, with flexibility for morning or afternoon shifts and weekend coverage
WHO WE’RE LOOKING FOR
1–3 years of experience in SOC, MDR, or IT security operations (internships or equivalent experience in SaaS support acceptable for junior level).
Strong understanding of EDR/XDR operations and security incident workflows
Strong understanding of common attacker's TTPs and MITRE ATT&CK framework in general.
Fast at logs analysis in Kibana or manual reviews.
Experience working with security tools (EDR, SIEM, SOAR) and interest in automation technologies
Ability to follow structured processes and accurately document findings
Strong communication skills and attention to details
Good English communication skills for effective customer interactions via email and phone
Strong communication skills and attention to details
*Please submit your resume and application in English
WHO WE ARE
A Swiss company founded in Singapore in 2003, Acronis offers over twenty years of innovation with 15 offices worldwide and more than 1800 employees in 50+ countries. Acronis Cyber Protect is available in 26 languages in 150 countries and is used by over 20,000 service providers to protect over 750,000 businesses.
Our corporate culture is focused on making a positive impact on the lives of each employee and the communities we serve. Mutual trust, respect and belief that we can contribute to the world everyday are the cornerstones of our team. Each member of our “A-Team” plays an instrumental role in driving the success of our innovative and expanding business. We seek individuals who excel in dynamic, global environments and have a never give up attitude, contributing to our collective growth and impact.
OUR INTERVIEW PRACTICES
To maintain a fair and genuine hiring process, we kindly ask that all candidates participate in interviews without the assistance of AI tools or external prompts. Our interview process is designed to assess your individual skills, experiences, and communication style. We value authenticity and want to ensure we’re getting to know you—not a digital assistant. To help maintain this integrity, we ask to remove virtual backgrounds and include in-person interviews in our hiring process.
Use of AI-generated responses or third-party support during live interviews may be grounds for disqualification from the recruitment process and a full criminal, education and identification background check is required for all new hires.
Acronis is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, marital status, national origin, physical or mental disability, medical condition, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, gender identity or expression, or any other characteristic protected by applicable laws, regulations and ordinances.
Top Skills
What We Do
Acronis unifies data protection and cybersecurity, delivering cyber protection that solves safety, accessibility, privacy, authenticity, and security (SAPAS) challenges.
Acronis offers antivirus, backup, disaster recovery, endpoint protection management solutions, and award-winning AI-based antimalware and blockchain-based data authentication technologies through service provider and IT professional deployment models. These solutions protect data, applications, and systems in any environment.
Founded in Singapore in 2003 and incorporated in Switzerland in 2008, over 5.5 million home users and 500,000 companies, including 100% of the Fortune 1,000, trust Acronis. Acronis products are available through 50,000 partners and service providers in over 150 countries and 40 languages.
