• Sr SOC Analyst

    ASM Global (West Conshohocken, PA)


    Job Title: Sr SOC AnalystDepartment: Global TechnologyReports To: VP, Cyber SecurityFLSA Status: Salaried/Exempt

     

    LEGENDS GLOBAL Legends Global is the premier partner to the world's greatest live events, venues, and brands. We deliver a fully integrated solution of premium services that keeps our partners front and center through our white-label approach. Our network of 450 venues worldwide, hosting 20,000 events and entertaining 165 million guests each year, is powered by our depth of expertise and level of execution across every component, feasibility & consulting, owner’s representation, sales, partnerships, hospitality, merchandise, venue management, and content & booking — of world-class live events and venues.

     

    The Legends Global culture is one of respect, ambitious thinking, collaboration, and bold action. We are committed to building an inclusive workplace where everyone can be authentic, make an impact, and grow their career. Winning is an everyday thing at Legends Global. We have the best team members who understand every win is earned when we come together as one unified team. Sound like a winning formula for you? Join us!

     

    THE ROLEThe Senior SOC Analyst is responsible for detection, triage, and response operations across our enterprise. This role blends hands-on incident handling with detection engineering, playbook development, and response automation efforts. This role delivers on alerts and case management, drives resilient detection strategies, and leads hunt efforts that proactively surface threats before they become incidents.

    ESSENTIAL DUTIES AND RESPONSIBILITIES

    + Build and operationalize SOC playbooks and escalation workflows.

    + Lead alert triage, enrichment, and false-positive suppression.

    + Author detection requirements; write and tune SIEM rules.

    + Develop hunt hypotheses; lead hunt programs using advanced elemetry and signals intelligence.

    + Design detection strategies across the kill chain; drive enterprise detection strategy.

    + Execute incidents end-to-end: containment/eradication, documentation, and communication.

    + Conduct post-incident reviews and drive remediation and control improvements.

    + Encourage industry collaboration; embed resilient detection engineering practices.

    + Advocate and implement automation-first incident response.

     

    QUALIFICATIONS To perform this job successfully, an individual must be able to perform each essential duty with energy and enthusiasm. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

     

    Education and/or Experience

     

    + Proven experience in a SOC or equivalent detection & response function and is passionate

    + about high-fidelity detections, repeatable playbooks, and measurable outcomes.

    + 3-5 years in Security Operations, Detection & Response, or Incident Handling (SOC

    + experience required).

    + Hands-on experience with SIEM (e.g., SecOps, Sentinel, QRadar), EDR (e.g.,

    + CrowdStrike, Defender, SentinelOne), and SOAR platforms

    + Proficient in authoring detections, rule tuning, enrichment pipelines, and alert routing.

    + Demonstrated capability in building and executing IR playbooks and

    + containment/eradication plans.

    + Experience conducting post-incident reviews and RCAs, and delivering corrective action

    + plans to engineering teams.

    + Scripting skills (Python/PowerShell/Bash) for automation, enrichment, and data wrangling.

    + Excellent written communication for case documentation and executive-ready incident

    + summaries.

     

    Desired Skills and Abilities

     

    + Turns noisy telemetry into actionable signals

    + Is detail-oriented and disciplined in organizing information. Ships repeatable playbooks,

    + maintains clean runbooks, and closes feedback loops.

    + Ready to mentor other analysts, set standards for communication and delivery for the SOC

    + Comfortable presenting complex technical information to the CISO or other executive

    + leadership

     

    COMPENSATIONCompetitive salary, commensurate with experience, and a generous benefits package that includes medical, dental, vision, life and disability insurance, paid vacation, and 401k plan.

     

    WORKING CONDITIONSLocation: Hybrid (This person can be based out of our Dallas/Frisco, TX or Conshohocken, PA Corporate Headquarters

     

    PHYSICAL DEMANDSThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

     

    NOTE:The essential responsibilities of this position are described under the headings above. They may be subject to change at any time due to reasonable accommodation or other reasons. Also, this document in no way states or implies that these are the only duties to be performed by the employee occupying this position.

     

    Legends Global is an Equal Opportunity/Affirmative Action employer, and encourages Women, Minorities, Individuals with Disabilities, and protected Veterans to apply. VEVRAA Federal Contractor.