Calian Group is seeking a SOC Analyst – Level 1 specializing in XDR Monitoring. The role involves 24/7 monitoring of client environments, triaging security alerts, supporting incident response, and contributing to the continuous improvement of threat detection and response capabilities.
Monitor and analyze security events and alerts using XDR and related platforms, ensuring continuous 24/7/365 surveillance of client environments for potential threats and incidents
Perform alarm triage, Assess and investigate alerts for signs of attacks, compromises, or suspicious activity, escalating incidents according to defined SLA priorities (P1–P5)
Analyze threats, investigate anomalous behavior, and advise on basic incident response steps
Recommend and contribute to the fine-tuning of detection rules, correlation logic, and playbooks to improve accuracy
Correlate alerts with threat intelligence feeds and vulnerability data to assess real risk
Conduct proactive hunts across endpoints, network, and cloud environments to identify threats not detected by automated tools
Collaborate with technical account managers and participate in technical calls to report on threat and SLA compliance trends
Maintain dashboard updates and ensure continuous improvement of monitoring processes
Participate in containment procedures and support blocking/isolation of indicators of compromise (IoCs)
Willingness and ability to participate in shift-based rotations (including nights, weekends, and holidays) as part of a 24/7 SOC team
Qualification
Required
Already have a valid Federal Government security clearance or eligible to have one
1-2+ years of experience in a SOC or cybersecurity analyst role
Strong knowledge of XDR platforms, security event monitoring, and incident response workflows
Understanding of threat detection technologies, alarm triage, and reporting best practices
Experience with ticketing systems (e.g., Jira) and workflow automation
Strong analytical skills and attention to detail
Ability to work in a 24/7/365 operational environment, including shift work
Knowledge of compliance reporting and security best practices
Solid understanding of SOC operations, incident response, and threat detection methodologies
Knowledge of MITRE ATT&CK framework and applying it to Investigation, Monitoring & Response
Ability to work independently, take initiative, and lead efforts with minimal supervision
Excellent English communication skills (written and verbal) to interact effectively with Canadian clients and internal teams
A degree in Information Technology, Computer Science, Cybersecurity, or equivalent experience
Strong knowledge of adversary tactics, leveraging MITRE ATT&CK for advanced threat detection
Proficiency in security monitoring tools, log analysis, and forensic investigations
Ability to work in a high-pressure environment, making quick and informed decisions during security incidents
Preferred
XDR/SIEM/EDR experience preferred
Industry-recognized cybersecurity certifications such as CCFA, CCFR, CCFH, SC-200, SC-900, AZ-500, GCIH, CEH, or similar are a plus
Benefits
We help the world communicate, innovate, learn and lead safe and healthy lives.
Glassdoor
Founded in 1982
Ottawa, Ontario, CAN
5001-10000 employees
https://calian.com/en
We help the world communicate, innovate, learn and lead safe and healthy lives.
