SOC Engineer Level 1 - Threat Intelligence

Posted 14 Days Ago
Be an Early Applicant
Nashua, NH, USA
In-Office
80K-95K Annually
Junior
Information Technology
The Role
Support detection, threat hunting, and incident response across a hybrid cloud environment. Develop and tune detection rules (WAF, EDR, SIEM), perform structured threat hunts using KQL/CQL/SPL, enrich IOCs, support EASM, assist triage and correlate activity across Defender and Sentinel, document findings, and help optimize security tooling and dashboards.
Summary Generated by Built In

Rightworks offers the only intelligent cloud purpose-built for accounting firms and professionals. Backed by award-winning support, our fully managed IT and applications ensure customers have secure, reliable, on-demand access to their technology. We provide a curated software ecosystem that simplifies the complexity of running an accounting firm or small business, supported by a community of thought leaders, peer networks, and educational resources. Our success is made possible by leveraging decades of specialized experience in leading accounting firms, SMBs and technology companies. Thousands of Firms and SMBs count on us to run their business every day. 

We have a great team, we’re growing fast and have a winning culture based on innovation, teamwork, and mutual respect. 


Job Overview

Rightworks is seeking a motivated Security Operations Engineer to support detection, threat hunting, and security operations across our hybrid cloud environment. This role will focus on developing and improving detection capabilities, performing structured threat hunting, and supporting incident response activities under the guidance of senior team members. 

The ideal candidate will have foundational experience in cloud security and security operations, with a strong ability to analyze data, identify suspicious activity, and contribute to improving the organization’s overall security posture. This role requires a detail-oriented individual who can follow structured processes, document findings clearly, and continuously develop technical skills in areas such as detection engineering, threat intelligence, and cloud security while working both independently and as part of a team. 

This is a hybrid work position, with 3 days per week in our Nashua, NH headquarters.
 
 

Responsibilities 

  • Develop and tune detection rules (WAF, EDR, SIEM alerts, etc.) based on known threat actor tactics, techniques, and procedures (TTPs) 

  • Perform structured threat hunting across endpoints, identity, and cloud workloads  

  • Conduct threat intelligence research and IOC enrichment  

  • Support External Attack Surface Management (EASM) 

  • Assist in the triage and incident response process and in correlating activity across multiple security tools (Defender, Sentinel, etc.) when required 

  • Contribute to detection improvement through tuning, validation, and feedback  

  • Document investigations, queries, and findings clearly and consistently  

  • Assist with security tool optimization, dashboards, and reporting 

  • Assist with monitoring of artificial intelligence (AI) products to ensure alignment with safety and security policies. 

 

Requirements 

  • 2+ years of hands-on experience implementing technical policies and controls in a hybrid cloud environment, including but not limited to Azure. 

  • 2+ years of experience correlating external and internal threat intelligence and enriching IoCs.   

  • 1+ year of experience in proactive threat hunting using advanced query languages (e.g., KQL, CQL, SPL, etc.) and automation techniques.   

  • 1+ year of experience performing external attack surface management (EASM) across hybrid environments. 

  • Demonstrated ability to conduct a hypothesis-driven threat hunt and strong knowledge of the MITRE ATT&CK framework and common threat actor TTPs. 

  • Cybersecurity certifications required (e.g., Microsoft AZ-500, CEH, CySA+ or equivalent).   

  • Strong OSINT and threat research capabilities, with experience leveraging automation and scripting for enrichment.   

  • Excellent analytical, documentation, and communication skills; ability to present findings to technical and non-technical audiences.  


Eligibility Requirements 

  • This role is open to US Citizens or permanent residents authorized to work in the United States. Rightworks LLC is unable to offer visa sponsorship.  

  • Due to specific state regulations, we are unable to accept applications from residents of California, Hawaii, or Alaska.  

  • Relocation will not be offered for this position. 


Compensation 

Our Compensation range for this role ranges from $80,000 to $95,000 annually, and is determined based on factors such as relevant experience, skills, and internal equity. 
 
 

Benefits 

To provide best-in-class solutions, we need a best-in-class team. We offer competitive salaries to recruit the best talent. We provide company-paid short and long-term disability insurance, life insurance and a generous 401K match. We offer highly affordable medical, dental, vision coverage, and many other valuable benefits. We offer flexible PTO, and numerous paid holidays, affording you the time to be there for what is important in your life. We encourage giving back to our communities by providing paid volunteer time off. We are proud to be an Equal Opportunity Employer! 

 
 
 
 

This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended at any time at the sole discretion of the employer. 

Skills Required

  • 2+ years hands-on experience implementing technical policies and controls in a hybrid cloud environment, including Azure
  • 2+ years correlating external and internal threat intelligence and enriching IOCs
  • 1+ year proactive threat hunting using advanced query languages (KQL, CQL, SPL) and automation techniques
  • 1+ year performing external attack surface management (EASM) across hybrid environments
  • Ability to conduct hypothesis-driven threat hunts and strong knowledge of the MITRE ATT&CK framework and threat actor TTPs
  • Cybersecurity certifications required (e.g., Microsoft AZ-500, CEH, CySA+ or equivalent)
  • Strong OSINT and threat research capabilities, with experience leveraging automation and scripting for enrichment
  • Excellent analytical, documentation, and communication skills; ability to present findings to technical and non-technical audiences
  • Must be a US citizen or permanent resident authorized to work in the United States; employer cannot offer visa sponsorship
  • Applicants from California, Hawaii, or Alaska will not be accepted
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Nashua, NH
631 Employees
Year Founded: 2002

What We Do

At Rightworks, we propel the accounting profession forward with the only intelligent cloud that is purpose-built for accounting firms and professionals. More US-based accounting firms partner with Rightworks than any other cloud service provider in our space. And that’s because we are so much more—offering premier managed security services and an established, always-here community where accounting professionals share best practices and proven strategies—all within a supportive, non-competitive environment. Rightworks has everything firms and professionals require to elevate client service, empower teams to greatness and fuel long-term, sustainable success. Rightworks helps accounting firms and professionals elevate every aspect of operations via a comprehensive, unified solution portfolio to operate their businesses and serve clients with natural confidence. With a single partner supporting operations at every level, success is inevitable. We are headquartered in Nashua, NH, with more than 600 employees in the United States.

Similar Jobs

BAE Systems, Inc. Logo BAE Systems, Inc.

Information Technology Systems Administrator

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Manchester, NH, USA
40000 Employees
79K-135K Annually

BAE Systems, Inc. Logo BAE Systems, Inc.

Software Engineering Intern I, Summer 2027

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Manchester, NH, USA
40000 Employees
42K-58K Annually

BAE Systems, Inc. Logo BAE Systems, Inc.

Software Engineer

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Hudson, NH, USA
40000 Employees
79K-135K Annually

BAE Systems, Inc. Logo BAE Systems, Inc.

Software Engineering Intern I, Summer 2027

Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
Hybrid
Nashua, NH, USA
40000 Employees
42K-58K Annually

Similar Companies Hiring

Scrunch  Thumbnail
Artificial Intelligence • Information Technology • Marketing Tech • Software • SEO
Salt Lake City, Utah
Standard Template Labs Thumbnail
Artificial Intelligence • Information Technology • Software
New York, NY
25 Employees
Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account