AgileBlue is an AI-native Security Operations platform that detects, investigates, and auto-responds to cyber threats across cloud, network, and endpoint environments. Our platform combines Sapphire AI for automated detection with 24/7 human-led investigation, built for mid-market organizations and the MSPs that serve them.
AgileBlue is hiring L2 SOC Analysts to handle high severity investigations that go beyond standard playbook scope. You will build incident timelines from raw logs, write your own queries to follow an investigation wherever it leads, and handle complex cases that need a real investigative approach.
You will work alongside L1 analysts on shift, pick up cases they cannot resolve, and hand off the most complex situations to the senior analyst. The job requires independent judgment. Playbooks are a starting point, not a ceiling.
• Handle cases that exceed L1 scope, including complex and high-severity cases requiring open-ended investigation.
• Build incident timelines from raw logs without relying on a prescriptive playbook. Use playbooks as a reference, not a dependency.
• Investigate suspicious activity by forming hypotheses about attacker behavior based on TTPs, then testing them against available telemetry.
• Write security queries to explore beyond what the alert surface shows. Contain and disrupt threats where the situation calls for it.
• Analyze security breaches to identify root cause. Prioritize and document findings with enough detail for incident reporting and client communication.
• Communicate findings to clients through established channels with clear, accurate documentation. Surface vulnerabilities and patterns identified through daily case review.
• Execute pre-scoped threat hunts assigned by the senior analyst on shift. Document findings and escalate hits.
• Follow customer-specific playbooks and internal SOC procedures. Identify gaps and report them to senior analysts.
• 2 to 4+ years of SOC or security operations experience, or a strong L1 analyst with a demonstrated investigative track record.
• Hands-on experience building incident timelines from raw log sources without being handed a template.
• Active experience writing KQL, EQL, or equivalent query language in a real investigation context.
• Working knowledge of attacker TTPs across the MITRE ATT&CK framework.
• Familiarity with endpoint, network, identity, and cloud log sources and what normal looks like for each.
• Clear written communication under pressure. Clients read your case notes.
Full-Time Employment
Multiple shifts available across our 24/7 operation
Cleveland, OH OR remote within the United States
SOC Manager
Competitive base salary | 401k with company match | Unlimited PTO | Paid training and certification support | Clear, measurable path to advancement
Submit your resume and a brief cover letter to ***email_hidden*** with 'SOC Analyst L2' as the subject line. Describe a specific investigation where you had to go beyond the playbook. Tell us what you found and how you found it.
...Overview Concentra one of the largest health care companies in the nation is looking for a hand surgeon to come on site to our location as a 1099 independent contractor. This role is a contract position and is meant to compliment your current practice. A typical partnership...
...We are looking for a reliable delivery driver who is concerned with customer satisfaction and transporting items in a safe, timely manner. The delivery driver will pick up and drop off items while adhering to assigned routes and time schedules. You should be willing to...
...Nephrology Opportunity: ~ Initial income guarantee ~ One clinic - stay centrally located!~ Comprehensive benefits including relocation stipend ~1:4 call rotation ~ Large primary care referral base Southwest Location w/ Major Metro Access Easy access...
CAREGIVERS! Are you getting burned out? What if you had an opportunity to work for a company who has \Customer Second\ as one of our values? Do you want to GROW? We PROMOTE to Lead Caregiver, Floater, Mentor, Office Staff, Managers, and MORE! We want YOU to join...
...day with dogs instead.Passionately Pets is currently hiring part-time midday dog walkers who want a rewarding and active job caring... ...month commitmentWhy Join Us* Earn $24-$28/hour + tips* Flexible, consistent midday hours* Work independently while staying...