Xperi Careers

• Continuously monitor security alerts and events across SIEM, EDR, IDS/IPS, firewalls, and cloud environments. 
• Correlate logs from multiple sources to identify patterns indicative of malicious activity. 
• Develop and maintain dashboards for real-time visibility into security posture. 
• Perform proactive threat hunting to identify anomalies and potential compromises before alerts are triggered. 

• Act as first responder for security incidents, ensuring timely triage and escalation. 
• Conduct in-depth forensic analysis on compromised systems, including memory dumps, network traffic, and log files. 
• Collaborate with IT and application teams to contain and eradicate threats. 
• Prepare detailed incident reports, including timelines, impact analysis, and lessons learned. 

• Configure, maintain, and optimize SOC technologies such as SIEM, SOAR, EDR, and threat intelligence platforms. 
• Develop and fine-tune correlation rules, detection signatures, and automated playbooks. 
• Integrate new log sources and ensure proper parsing and normalization for accurate detection. 
• Evaluate emerging security tools and recommend adoption to strengthen SOC capabilities. 

• Gather and analyze threat intelligence from internal and external sources. 
• Map indicators of compromise (IOCs) to MITRE ATT&CK framework for improved detection coverage. 
• Share actionable intelligence with relevant stakeholders to enhance preventive measures. 
• Track and report on evolving threat actor tactics, techniques, and procedures (TTPs). 

• Ensure SOC operations align with regulatory frameworks (e.g., PCI-DSS, HIPAA, ISO 27001). 
• Generate weekly and monthly SOC performance metrics, including mean time to detect (MTTD) and mean time to respond (MTTR). 
• Maintain accurate documentation of SOC processes, incident workflows, and audit trails. 

• Participate in red team/blue team exercises and penetration testing reviews. 
• Conduct post-incident reviews to identify gaps and recommend process improvements. 
• Collaborate with vulnerability management teams to prioritize remediation based on threat intelligence. 
• Provide training and mentorship to junior SOC analysts. 

• Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience). 
• 2+ years of experience in a SOC or security operations role. 

Strong knowledge of: 

• SIEM platforms (e.g., Sentinel, Splunk, QRadar) 
• Network security concepts (firewalls, IDS/IPS) 
• Endpoint security and malware analysis 
• Familiarity with incident response frameworks (NIST, SANS). 
• Understanding of cloud security (AWS, Azure, GCP). 

• Certifications such as GCIA, GCIH, CEH, Security+, CySA+, or CISSP. 
• Experience with scripting (Python, PowerShell) for automation. 
• Knowledge of threat hunting and advanced persistent threats (APT). 

• Strong analytical and problem-solving skills. 
• Excellent communication and interpersonal abilities. 
• Ability to manage multiple priorities in a fast-paced environment. 
• Detail-oriented with a commitment to continuous learning and improvement. 

• Competitive compensation (salary, equity and bonuses) and comprehensive benefits designed to foster work-life balance, care for your health, protect your finances and help you save and invest for the future.
• Generous paid time away from work, including flexible time off, holidays and sick time, health and wellness initiatives, and a charitable match program to help you give back to your community.
• Great perks, which vary by location and can be site-specific: employee discounts, transportation reimbursements, subsidized cafes and fitness facilities.
• A flexible, hybrid work environment combining the best of in-office collaboration and community-building along with the benefits of working from home.