SOC Analyst

It's fun to work in a company where people truly BELIEVE in what they're doing! We're committed to bringing passion and customer focus to the business. Job Title: SOC Analyst Department:CC1025 Compliance & Cybersecurity (CORE) Location:Latham - NY Reports To:CISO Employment Type:Full-Time It's fun to work in a company where people truly BELIEVE in what they're doing! We're committed to bringing passion and customer focus to the business. Public Partnerships LLC supports individuals with disabilities or chronic illnesses and aging adults, to remain in their homes and communities and “self” direct their own long-term home care. Our role as the nation’s largest and most experienced Financial Management Service provider is to assist those eligible Medicaid recipients to choose and pay for their own support workers and services within their state-approved personalized budget. We are appointed by states and managed healthcare organizations to better serve more of their residents and members requiring long-term care and ensure the efficient use of taxpayer funded services. Our culture attracts and rewards people who are results-oriented and strive to exceed customer expectations. We desire motivated candidates who are excited to join our fast-paced, entrepreneurial environment, and who want to make a difference in helping transform the lives of the consumers we serve. (learn more atwww.pplfirst.com). Job Summary: We are seeking a skilled and motivated SOC Analyst to join our Security Operations Center team. In this role, you will be responsible for monitoring, analyzing, and responding to security threats using a variety of tools and technologies. The ideal candidate will possess strong technical expertise, analytical thinking, and a proactive approach to detecting and mitigating cybersecurity risks. Key Responsibilities: Salary Range: $110,000- $120,000 • Support both cybersecurity and fraud investigations by correlating digital forensics artifacts with behavioral indicators and transaction logs. • Perform forensic analysis on endpoints, servers, cloud infrastructure, and logs to investigate and reconstruct cyber and fraud incidents. • Collaborate with fraud, compliance, and legal teams to investigate suspicious financial or identity-based activities. • Use tools such as endpoint forensics platforms, packet analyzers, and case management systems to support investigative workflows. • Develop threat profiles and fraud detection patterns to enhance correlation rules and proactive alerting. • Monitor security alerts and events from SIEM (Security Information and Event Management) and other sources. • Monitor and analyze application logs (e.g., authentication, transaction, API activity) to detect security anomalies and potential fraud indicators. • Analyze security incidents to determine impact, scope, and root cause. • Respond to and contain security incidents, coordinating with internal teams as needed. • Create, update, and maintain incident tickets with detailed information and findings. • Conduct triage on alerts, prioritize security events, and escalate as necessary. • Perform threat hunting and anomaly detection using endpoint and network data. • Maintain awareness of current threats, vulnerabilities, and attack vectors. • Assist in the creation and tuning of detection rules, dashboards, and reports. • Participate in post-incident reviews and support forensic investigations. • Collaborate with IT and security teams to implement security best practices. • Develop and maintain SOC documentation, including SOPs and runbooks. Required Qualifications: • Bachelor’s degree in computer science, Cybersecurity, Information Technology, or a related field, or equivalent experience. • 2+ years of experience in a security operations, incident response, or similar cybersecurity role. • Experience with SIEM tools (e.g., Splunk, QRadar, LogRhythm, ArcticWolf, DataDog). • Understanding of network protocols, operating systems, and common threat actor techniques (MITRE ATT&CK framework). • Familiarity with firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus, and endpoint detection tools. • Strong analytical, problem-solving, and communication skills. • Ability to work in a 24/7 on-call rotation or shift-based environment if required. Preferred Qualifications: • Security certifications such as CompTIA Security+, CEH, GCIA, GCIH, or SSCP. • Experience with scripting languages (e.g., Python, PowerShell) for automation. • Knowledge of cloud security (AWS, Azure, or GCP). • Experience in vulnerability management and threat intelligence. What We Offer: • Competitive salary and benefits package. • Opportunities for professional development and certification. • A collaborative and inclusive team environment. • Flexible work arrangements (remote/hybrid options may be available). The above is intended to describe the general contents and requirements of work being performed by people assigned to this classification. It is not intended to be construed as an exhaustive statement of all duties, responsibilities, or skills of personnel so classified. This position may have access to private, confidential or sensitive information related to PPL, its customers or clients, or patient information. Employees in this position are required to complete new hire and annual training for privacy and security, complete attestations for the PPL Code of Conduct, The Employee Handbook, and satisfactorily pass a background screen before access to any PPL information will be granted. PPL is an Equal Opportunity Employer dedicated to celebrating diversity and intentionally creating a culture of inclusion. We believe that we work best when our employees feel empowered and accepted, and that starts by honoring each of our unique life experiences. At PPL, all aspects of employment regarding recruitment, hiring, training, promotion, compensation, benefits, transfers, layoffs, return from layoff, company-sponsored training, education, and social and recreational programs are based on merit, business needs, job requirements, and individual qualifications. We do not discriminate on the basis of race, color, religion or belief, national, social, or ethnic origin, sex, gender identity and/or expression, age, physical, mental, or sensory disability, sexual orientation, marital, civil union, or domestic partnership status, past or present military service, citizenship status, family medical history or genetic information, family or parental status, or any other status protected under federal, state, or local law. PPL will not tolerate discrimination or harassment based on any of these characteristics. If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us! If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!