The Role
Lead advanced investigations and threat hunts across endpoints, network, and cloud. Tune SIEM/IDS/EDR detections, analyze logs and traffic, support vulnerability management, produce reports, write runbooks, and recommend process improvements to strengthen security posture.
Summary Generated by Built In
We believe in hiring analysts who want to do their best work. We believe great security operations are built on strong fundamentals, curiosity, and continuous learning.
We value ownership and accountability, knowing your scope, taking responsibility for it, and being transparent about gaps.
We believe feedback is fuel for growth, and mistakes are opportunities to learn. We expect preparation, critical thinking, and smart questions, not shortcuts.
What you will be working on
What you will be working on
We’re looking for an IT Security (SOC) Analyst (Tier 2) to join our Security Operations team. This role goes beyond alert triage, you’ll be leading advanced investigations, proactively hunting for threats, and optimising tools and processes that strengthen Zappi’s security posture.
You'll be joining a SOC at an inflection point. We have strong governance foundations and are now streamlining our operations to be more effective and intelligence-driven. This is your chance to grow with us, to be part of building something exceptional while developing your own expertise in a supportive but high-standards environment.
You will:
- Investigate and respond to security incidents across endpoints, networks, and cloud environments
- Lead threat hunts to uncover malicious activity beyond automated alerts
- Refine and tune SIEM, IDS/IPS, and EDR detections to reduce false positives
- Analyse logs and network traffic to uncover patterns and attack techniques
- Support vulnerability management, working with Engineering to prioritise and remediate risks
- Research emerging threats and apply threat intelligence to improve defences
- Contribute to runbooks and playbooks that raise the team’s effectiveness
- Identify process gaps and recommend improvements with data-driven evidence
- Generate actionable reports and insights to improve detection and prevention
What you'll need:
You’ll need to demonstrate the characteristics of a mid-level SOC Analyst. We don’t expect you to know every tool we use, but we do expect transferable technical experience and the ability and desire to learn new technologies.
Core experience (minimum 2 years):
- Experience working in a SOC or similar IT security and network operations environment, with confidence investigating incidents end-to-end and producing clear, actionable reports
- Hands-on use of Wazuh (or similar SIEM/IDS) for log analysis, detection, correlation, and tuning custom detection rules
- Exposure to endpoint detection and response (EDR) platforms (e.g., SentinelOne) and ability to analyse network traffic to identify anomalies or attack patterns
- Basic scripting skills (Python, Bash, or PowerShell) to automate investigations and improve efficiency
- Experience supporting vulnerability management (e.g., reviewing scan results, collaborating on remediation, or assessing risks in codebases)
- Familiarity with security monitoring practices to support compliance frameworks such as ISO27001
Mindset and behaviours:
- Takes ownership of investigations and projects, delivering high-quality outcomes.
- Open to feedback and transparent about gaps or mistakes.
- Proactively improves tools, processes, and detection coverage.
Bonus if you have:
- Experience with AWS security monitoring and incident response (CloudTrail, GuardDuty, IAM).
- Experience with Wiz or similar tool for cloud security posture management and vulnerability detection
- Security certifications (e.g. AWS Security Specialty)
- Strong understanding of networking and operating systems (Windows/Linux)
- Hands-on experience with container or Kubernetes security and SaaS Security Posture Management (SSPM)
We understand that you may be involved in many interview processes, so we don’t expect our candidates to complete any take home exercises. If you apply for this role, you can expect the following:
HR screening call – A short 20 minute call with our hiring manager to check how suitable you are for the role and cover any administrative points.
Manager Interview – A 1 hour interview with a hiring manager to discuss your background, experience and motivations for the role. This will be a free flowing discussion, guided by our manager and will cover various areas of your experience.
Technical Interview – This will usually last around 2 hours and will take place with a small group of our security team. It will be based on a short practical homework exercise you’ll complete in advance, followed by a discussion of your approach and reasoning. We’re not looking for perfect answers, what matters most is how you think, how you communicate your process, and how you adapt when faced with challenges. There will also be time to talk about how we work and what you would be working on.
Benefits
- Unlimited holidays – we want well rested and motivated teams so encourage people to take plenty of time off. We don’t cap your allowance, but do set a minimum of at least 20 days per year plus national holidays
- Three company-paid mental health days of rest every year (these are pre-scheduled, so the entire company can take the same days off regularly to reset)
- Thoughtfully designed offices to support both individual work and collaboration without interrupting others
- Private medical healthcare cover
- Medical Aid
- Group risk, life & disability contributions
- Wellbeing benefits such as free yoga and access to trained therapists / counsellors
- Paid 24h secure parking in Cape Town
- Free coffee, lunches and in-office snacks
- Tailored personal development through training allowances, coaching, mentorship and career frameworks
We’ve been recognized as one of the hottest martech companies in 2022 by Business Insider and named Best Place to Work by Quirk’s Media for our engaging and inclusive workplace culture. We’re committed to both people and the planet.
Our belief in inclusion means we’re building an organisation of diverse individuals and helping brands eliminate cultural presumptions in their research. Read our Diversity Manifesto here.
We are a values and behaviours driven business and believe that Trust, Truth, Ownership, Ambition and Humility describe Zappi employees on our best day. This is how we strive to show up for our customers, for each other and for our communities.
Earning B Corp certification assures us we’re on the right track and have structures in place to become the business we want to be.
Our commitment to minimise our impact on the environment means being honest with ourselves and transparent with you—about everything from carbon emissions to tree-planting initiatives. We achieved our goal of becoming Net Zero in 2021!
Zappi Company Culture Highlights
- Winner of Comparably's Award for Best Company for Women 2022
- Winner of Comparably's Award for Best Company Work-Life Balance 2022
- Winner of Comparably's Award for Best Company Compensation 2022
- Winner of Comparably's Award for Best CEO for Women 2022
- Winner of Comparably's Award for Best Company for Diversity 2022
- Winner of Comparably's Award for Best Company Culture 2022
- Winner of Comparably's Award for Best CEO 2022
- Winner of Comparably's Award for Best Happiness 2022
- Winner of Comparably's Award for Best Leadership Teams 2023
- Winner of Comparably's Award for Best CEOs for Diversity 2023
- Winner of Comparably's Award for Best Engineering Teams 2023
- Winner of Comparably's Award for Best Company Outlook 2023
- Winner of Newsweek’s Top 100 Most Loved Workplaces in the UK 2022 & 2023
- Recognised by Fast Company’s Best Workplaces for Innovators 2023
- Winner of Best Marketing Insights Platform in the MarTech Breakthrough Awards 2023 & 2024
Equal Opportunity
Zappi is an equal opportunity employer; our diversity is a major strength. We are committed to providing equal opportunities for all individuals, regardless of their race, gender, sexual orientation, disability, or any other characteristic protected by applicable laws.
We believe that a diverse and inclusive workforce fosters innovation, creativity, and success. Our hiring decisions are based solely on merit, qualifications, and abilities, ensuring fairness and equity throughout our recruitment process. We welcome applications from all backgrounds and encourage candidates from underrepresented groups to apply. Join our team and contribute to an inclusive environment where everyone's unique perspectives and talents are valued and respected.
About
Zappi is a leading consumer insights platform that helps brands win with consumers. Through AI-powered software that delivers connected insights, Zappi enables teams to make faster, smarter, consumer-driven decisions by leveraging real-time, continuous feedback.Trusted by more than 350 brands worldwide, Zappi helps create successful products, develop impactful ads, and build winning brands by keeping the voice of the consumer at the heart of every decision.Named the Best Marketing Insights Platform by the MarTech Breakthrough Awards in both 2023 and 2024, recognized by Business Insider as one of the hottest martech companies, and winner of the MRS Best Technology Innovation Award 2025, Zappi is redefining how modern teams use insights to drive growth.As a certified B-Corp, Zappi is committed to net-zero emissions, fostering an equitable workplace, and using technology to benefit the communities the company serves. With more than 300 employees across 13+ countries and offices in Boston, London, and Cape Town, Zappi’s culture has been celebrated by Fast Company, Comparably, Quirks, Great Place to Work, and more.
Skills Required
- Minimum 2 years experience working in a SOC or similar IT security/network operations environment
- Investigate and respond to security incidents end-to-end and produce clear, actionable reports
- Hands-on use of Wazuh or similar SIEM/IDS for log analysis, detection, correlation, and tuning custom detection rules
- Experience refining and tuning SIEM, IDS/IPS, and EDR detections to reduce false positives
- Exposure to EDR platforms (e.g., SentinelOne) and ability to analyse network traffic to identify anomalies or attack patterns
- Basic scripting skills (Python, Bash, or PowerShell) to automate investigations and improve efficiency
- Experience supporting vulnerability management (reviewing scan results, collaborating on remediation, assessing risks)
- Familiarity with security monitoring practices to support compliance frameworks such as ISO27001
- Takes ownership of investigations and projects, delivers high-quality outcomes, and is open to feedback
- AWS security monitoring and incident response (CloudTrail, GuardDuty, IAM)
- Experience with Wiz or similar cloud security posture management and vulnerability detection tools
- Security certifications (e.g., AWS Security Specialty)
- Strong understanding of networking and operating systems (Windows/Linux)
- Hands-on experience with container or Kubernetes security and SaaS Security Posture Management (SSPM)
Zappi Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Zappi and has not been reviewed or approved by Zappi.
-
Fair & Transparent Compensation — Pay is positioned as competitive overall, reinforced by recognition for compensation and repeated signals of above-average pay satisfaction. Compensation is also described as “more than fair” and, in some cases, at the higher end of market comparisons.
-
Leave & Time Off Breadth — Time off is framed as generous, with an uncapped/unlimited approach and an explicit minimum floor referenced in some descriptions. Company-paid mental health days further expand paid time away from work.
-
Healthcare Strength — Health coverage is described as comprehensive in multiple geographies, including medical, dental, vision, and additional protections such as life and disability coverage. UK-oriented descriptions add private medical coverage elements and related protections such as income protection.
Zappi Insights
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
We are a leading consumer insights enterprise platform designed for creators. If you're part of a team that creates brands, ads or innovative new products, then we think you're a creator. Our platform provides access to actionable, quick and smart insights to amplify creative effectiveness and shape winning innovation, empowering creators with the agility and the data they need to make better decisions about the ads and innovation they take to market. Through working with some of the biggest brands in the world, we’ve built technology that lets you see your product innovations and advertising ideas through your consumers’ eyes so you can iterate, optimize, validate and learn — increasing your chances of in-market success. Zappi has been recognized as one of the hottest martech companies in 2022 by Business Insider and named Best Place to Work by Quirk’s Media for its engaging and inclusive workplace culture. With offices in Boston, London and Cape Town, we are a hybrid company where career growth is equitable for everyone, whether you do your best work fully remotely, from an office, or a mix of the two. Inspire your ideas and validate your creations so you can create work that people love — work that works. To find out more, visit https://www.zappi.io/web.
