About the role
Position Overview
We are seeking a SOC Analyst – Level 1 specializing in XDR Monitoring. You will be responsible for 24/7/365 monitoring of client environments, triaging security alerts, supporting incident response, and contributing to continuous improvement of threat detection and response capabilities. You will work closely with SOC engineers, technical account managers, and client stakeholders to ensure rapid and effective handling of security incidents.
As a SOC Analyst, you will conduct log analysis, validate alerts, investigate suspicious activity, and escalate confirmed incidents in alignment with established playbooks. You will also perform and proactive monitoring to identify attacks that may bypass automated detections. You will perform analysis of security events generated by the XDR and tools. A key part of your responsibilities will be to document investigations, provide detailed reporting, and deliver clear communication to internal teams and clients. This is a rotation-based position with shift work, requiring reliability, collaboration, and a strong commitment to ensuring continuous security coverage.
Responsibilities
Monitor and analyze security events and alerts using XDR and related platforms, ensuring continuous 24/7/365 surveillance of client environments for potential threats and incidents. Perform alarm triage, Assess and investigate alerts for signs of attacks, compromises, or suspicious activity, escalating incidents according to defined SLA priorities (P1–P5) Analyze threats, investigate anomalous behavior, and advise on basic incident response steps. Recommend and contribute to the fine-tuning of detection rules, correlation logic, and playbooks to improve accuracy. Correlate alerts with threat intelligence feeds and vulnerability data to assess real risk. Conduct proactive hunts across endpoints, network, and cloud environments to identify threats not detected by automated tools. Collaborate with technical account managers and participate in technical calls to report on threat and SLA compliance trends. Maintain dashboard updates and ensure continuous improvement of monitoring processes. Participate in containment procedures and support blocking/isolation of indicators of compromise (IoCs). Willingness and ability to participate in shift-based rotations (including nights, weekends, and holidays) as part of a 24/7 SOC team.
Qualifications
Already have a valid Federal Government security clearance or eligible to have one. 1-2+ years of experience in a SOC or cybersecurity analyst role (XDR/SIEM/EDR experience preferred). Strong knowledge of XDR platforms, security event monitoring, and incident response workflows. Understanding of threat detection technologies, alarm triage, and reporting best practices. Experience with ticketing systems (e.g., Jira) and workflow automation. Strong analytical skills and attention to detail. Ability to work in a 24/7/365 operational environment, including shift work. Knowledge of compliance reporting and security best practices. Industry-recognized cybersecurity certifications such as CCFA, CCFR, CCFH, SC-200, SC-900, AZ-500, GCIH, CEH, or similar are a plus. Solid understanding of SOC operations, incident response, and threat detection methodologies. Knowledge of MITRE ATT&CK framework and applying it to Investigation, Monitoring & Response. Ability to work independently, take initiative, and lead efforts with minimal supervision. Excellent English communication skills (written and verbal) to interact effectively with Canadian clients and internal teams. A degree in Information Technology, Computer Science, Cybersecurity, or equivalent experience. Strong knowledge of adversary tactics, leveraging MITRE ATT&CK for advanced threat detection. Proficiency in security monitoring tools, log analysis, and forensic investigations. Ability to work in a high-pressure environment, making quick and informed decisions during security incidents.
Compensation
$60-70K
“Final compensation will be based on the successful candidate’s skills, experience, qualifications, and contract conditions.”
Vacancy
We have 3 (three) available positions
At Calian, we do not use Artificial Intelligence (AI) to screen or evaluate candidates. AI tools may support backend administrative tasks, but they do not influence hiring decisions. All evaluations and decisions are made by real people on our recruitment team and hiring managers. All applicants are reviewed and only those chosen for an interview will be contacted by our recruiting team.
#ID-DR1#
Similar Jobs
About the role
Position Overview
We are seeking a SOC Analyst – Level 1 specializing in XDR Monitoring. You will be responsible for 24/7/365 monitoring of client environments, triaging security alerts, supporting incident response, and contributing to continuous improvement of threat detection and response capabilities. You will work closely with SOC engineers, technical account managers, and client stakeholders to ensure rapid and effective handling of security incidents.
As a SOC Analyst, you will conduct log analysis, validate alerts, investigate suspicious activity, and escalate confirmed incidents in alignment with established playbooks. You will also perform and proactive monitoring to identify attacks that may bypass automated detections. You will perform analysis of security events generated by the XDR and tools. A key part of your responsibilities will be to document investigations, provide detailed reporting, and deliver clear communication to internal teams and clients. This is a rotation-based position with shift work, requiring reliability, collaboration, and a strong commitment to ensuring continuous security coverage.
Responsibilities
Monitor and analyze security events and alerts using XDR and related platforms, ensuring continuous 24/7/365 surveillance of client environments for potential threats and incidents. Perform alarm triage, Assess and investigate alerts for signs of attacks, compromises, or suspicious activity, escalating incidents according to defined SLA priorities (P1–P5) Analyze threats, investigate anomalous behavior, and advise on basic incident response steps. Recommend and contribute to the fine-tuning of detection rules, correlation logic, and playbooks to improve accuracy. Correlate alerts with threat intelligence feeds and vulnerability data to assess real risk. Conduct proactive hunts across endpoints, network, and cloud environments to identify threats not detected by automated tools. Collaborate with technical account managers and participate in technical calls to report on threat and SLA compliance trends. Maintain dashboard updates and ensure continuous improvement of monitoring processes. Participate in containment procedures and support blocking/isolation of indicators of compromise (IoCs). Willingness and ability to participate in shift-based rotations (including nights, weekends, and holidays) as part of a 24/7 SOC team.
Qualifications
Already have a valid Federal Government security clearance or eligible to have one. 1-2+ years of experience in a SOC or cybersecurity analyst role (XDR/SIEM/EDR experience preferred). Strong knowledge of XDR platforms, security event monitoring, and incident response workflows. Understanding of threat detection technologies, alarm triage, and reporting best practices. Experience with ticketing systems (e.g., Jira) and workflow automation. Strong analytical skills and attention to detail. Ability to work in a 24/7/365 operational environment, including shift work. Knowledge of compliance reporting and security best practices. Industry-recognized cybersecurity certifications such as CCFA, CCFR, CCFH, SC-200, SC-900, AZ-500, GCIH, CEH, or similar are a plus. Solid understanding of SOC operations, incident response, and threat detection methodologies. Knowledge of MITRE ATT&CK framework and applying it to Investigation, Monitoring & Response. Ability to work independently, take initiative, and lead efforts with minimal supervision. Excellent English communication skills (written and verbal) to interact effectively with Canadian clients and internal teams. A degree in Information Technology, Computer Science, Cybersecurity, or equivalent experience. Strong knowledge of adversary tactics, leveraging MITRE ATT&CK for advanced threat detection. Proficiency in security monitoring tools, log analysis, and forensic investigations. Ability to work in a high-pressure environment, making quick and informed decisions during security incidents.
Compensation
$60-70K
“Final compensation will be based on the successful candidate’s skills, experience, qualifications, and contract conditions.”
Vacancy
We have 3 (three) available positions
At Calian, we do not use Artificial Intelligence (AI) to screen or evaluate candidates. AI tools may support backend administrative tasks, but they do not influence hiring decisions. All evaluations and decisions are made by real people on our recruitment team and hiring managers. All applicants are reviewed and only those chosen for an interview will be contacted by our recruiting team.