Schneider Electric USA, Inc

Apply for this job

Senior SOC Analyst (Finance)



As a Senior SOC Analyst, you will serve as a critical line of defense in our cybersecurity operations, responsible for triaging, escalating, and investigating security alerts across IT and OT environments. You will work closely with Tier 1 analysts, incident responders, and plant operators to ensure rapid detection and response to cyber threats, particularly within OT systems.

About the CCSH NAM Hub

The Cybersecurity Connected Services Hub (CCSH) - North America (NAM) is Schneider Electric's strategic cybersecurity hub for delivering advanced Managed Security Services (MSS) to external clients. As the flagship of our 24/7 global Managed Security Operations Center (SOC), the NAM Hub focuses on securing OT environments across critical infrastructure and industrial systems. As part of our global Cybersecurity Solutions Services business, we drive innovation in threat detection and response, vulnerability and asset management, and security automation by leveraging best-in-class tools, people, and proven processes, along with deep domain expertise, to deliver impactful security outcomes at scale.

Key Responsibilities

  • Monitor and Analyze Security Telemetry
    Continuously monitor telemetry from OT-specific sensors, IT-Specific Sensors, SIEM platform, and Network Security tools to detect anomalous activity across OT e nvironments .
  • Triage and Enrich Security Alerts
    Investigate and prioritize alerts using ML and AI-driven recommendations and contextual threat intelligence to determine severity and relevance.
  • Incident Escalation and Documentation
    Escalate validated incidents following established SOPs, ensuring accurate and timely documentation of findings and actions taken.
  • Correlate Multi-Source Data
    Correlate alerts from various sources to identify true positives and uncover complex attack patterns or persistent threats.
  • Coordinate with Operational Technology (OT) Stakeholders
    Collaborate with plant operators and OT personnel during incident investigations to ensure minimal disruption to critical infrastructure.
  • Support Incident Response Activities
    Assist in containment, eradication, and recovery efforts during security incidents, and contribute to post-incident reviews and reporting.
  • Mentor and Support Tier 1 Analysts
    Provide guidance and technical support to L1 analysts, helping to improve triage accuracy and SOC efficiency.
  • Contribute to SOC Process Improvement
    Participate in the development and refinement of SOC playbooks, procedures, and automation workflows (SOAR).
  • Maintain Situational Awareness
    Stay informed on emerging threats, vulnerabilities, and attack techniques relevant to OT and ICS environments.

What qualifications will make you successful for this role?

Required:

  • 2-4 years of experience in a Security Operations Center (SOC) or cybersecurity operations role
  • An understanding of ICS/SCADA systems, OT protocols (e.g., Modbus, DNP3, OPC) is desirable
  • Experience with SIEM platforms (e.g., Splunk, Sentinel, Chronicle , QRadar , LogRhythm)
  • Familiarity with IDS/IPS, endpoint detection tools, and network security monitoring
  • Working knowledge of SOAR platforms and playbook execution
  • Solid grasp of incident response methodologies and threat actor behaviors (MITRE ATT&CK)
  • Ability to work rotating shifts, including weekends and holidays
  • Strong analytical, communication, and documentation skills
  • Currently local to Boston, MA and able to work full-time in person

Preferred:
  • Hands-on experience with KQL (Kusto Query Language)
  • Familiarity with NIST, ISO 27001, and other cybersecurity frameworks especially ICS frameworks
  • Experience in OT/ICS environments or critical infrastructure sectors.

Certifications (Preferred but not required ):
  • Any GIAC certifications such as , GCIH, GMON, GCIA, GCDA, GSOC, GICSP, GRID, GCIP

Let us learn about you! Apply today.

You must submit an online application to be considered for any position with us. This position will be posted until filled.

Looking to make an IMPACT with your career?

When you are thinking about joining a new team, culture matters. At Schneider Electric, our values and behaviors are the foundation for creating a great culture to support business success. We believe that our IMPACT values - Inclusion, Mastery, Purpose, Action, Curiosity, Teamwork - starts with us.

IMPACT is also your invitation to join Schneider Electric where you can contribute to turning sustainability ambition into actions, no matter what role you play. It is a call to connect your career with the ambition of achieving a more resilient, efficient, and sustainable world.

We are looking for IMPACT Makers; exceptional people who turn sustainability ambitions into actions at the intersection of automation, electrification, and digitization. We celebrate IMPACT Makers and believe everyone has the potential to be one.

Become an IMPACT Maker with Schneider Electric - apply today!

€36 billion global revenue
+13% organic growth
150 000+ employees in 100+ countries
#1 on the Global 100 World's most sustainable corporations

You must submit an online application to be considered for any position with us. This position will be posted until filled.

Schneider Electric aspires to be the most inclusive and caring company in the world, by providing equitable opportunities to everyone, everywhere, and ensuring all employees feel uniquely valued and safe to contribute their best. We mirror the diversity of the communities in which we operate, and 'inclusion' is one of our core values. We believe our differences make us stronger as a company and as individuals and we are committed to championing inclusivity in everything we do.

At Schneider Electric, we uphold the highest standards of ethics and compliance, and we believe that trust is a foundational value. Our Trust Charter is our Code of Conduct and demonstrates our commitment to ethics, safety, sustainability, quality and cybersecurity, underpinning every aspect of our business and our willingness to behave and respond respectfully and in good faith to all our stakeholders. You can find out more about our Trust Charter here

Schneider Electric is an Equal Opportunity Employer. It is our policy to provide equal employment and advancement opportunities in the areas of recruiting, hiring, training, transferring, and promoting all qualified individuals regardless of race, religion, color, gender, disability, national origin, ancestry, age, military status, sexual orientation, marital status, or any other legally protected characteristic or conduct.As a Senior SOC Analyst, you will serve as a critical line of defense in our cybersecurity operations, responsible for triaging, escalating, and investigating security alerts across IT and OT environments. You will work closely with Tier 1 analysts, incident responders, and plant operators to ensure rapid detection and response to cyber threats, particularly within OT systems.

About the CCSH NAM Hub

The Cybersecurity Connected Services Hub (CCSH) - North America (NAM) is Schneider Electric's strategic cybersecurity hub for delivering advanced Managed Security Services (MSS) to external clients. As the flagship of our 24/7 global Managed Security Operations Center (SOC), the NAM Hub focuses on securing OT environments across critical infrastructure and industrial systems. As part of our global Cybersecurity Solutions Services business, we drive innovation in threat detection and response, vulnerability and asset management, and security automation by leveraging best-in-class tools, people, and proven processes, along with deep domain expertise, to deliver impactful security outcomes at scale.

Key Responsibilities

  • Monitor and Analyze Security Telemetry
    Continuously monitor telemetry from OT-specific sensors, IT-Specific Sensors, SIEM platform, and Network Security tools to detect anomalous activity across OT e nvironments .
  • Triage and Enrich Security Alerts
    Investigate and prioritize alerts using ML and AI-driven recommendations and contextual threat intelligence to determine severity and relevance.
  • Incident Escalation and Documentation
    Escalate validated incidents following established SOPs, ensuring accurate and timely documentation of findings and actions taken.
  • Correlate Multi-Source Data
    Correlate alerts from various sources to identify true positives and uncover complex attack patterns or persistent threats.
  • Coordinate with Operational Technology (OT) Stakeholders
    Collaborate with plant operators and OT personnel during incident investigations to ensure minimal disruption to critical infrastructure.
  • Support Incident Response Activities
    Assist in containment, eradication, and recovery efforts during security incidents, and contribute to post-incident reviews and reporting.
  • Mentor and Support Tier 1 Analysts
    Provide guidance and technical support to L1 analysts, helping to improve triage accuracy and SOC efficiency.
  • Contribute to SOC Process Improvement
    Participate in the development and refinement of SOC playbooks, procedures, and automation workflows (SOAR).
  • Maintain Situational Awareness
    Stay informed on emerging threats, vulnerabilities, and attack techniques relevant to OT and ICS environments.
Apply
Apply Here done