Senior SOC AnalystThreat Hunter

Shape the Future with Lubrizol were transforming through science sustainability and a culture of inclusion. As part of our global teamyoullbe empowered to make a real impacton your career your community and the world around you.

Location: Wickliffe OH
JobType:Permanent Full Time Hybrid: 4 days in Office 1 day remote

HowYoullMake anImpact

As a Senior SOC Analyst / Threat Hunter youllbe at the forefront of our innovation driving prompt and reliable security monitoring and response services to enable business productivity. Youllcollaborate with a diverse group of passionate individuals to deliver sustainable solutions to advance mobility improvewellbeingand enhance modern this role you will:

• Execute defined incident response playbooks to investigate security incidents. This includes clear documentation of incident artifacts and business impacts/concerns.
• Develop new investigation and response playbooks.
• Automate repetitive SOC tasks using Python PowerShell and SOAR platforms to improve response time and reduce analyst fatigue
• Leverage AI/ML-enhanced tools (e.g. SOAR platforms) to improve detection and response efficiency.
• Integrate MITRE ATT&CK and behavioral analytics into threat detection workflows.
• Conduct hypothesis-driven threat hunts using structured methodologies.
• Collaborate with threat intelligence platforms (e.g. MISP Recorded Future) to enrich investigations.
• Design and execute proactive hypothesis-based threat hunts across endpoints networks and cloud environments using behavioral indicators and threat models.
• Participate in the development and continual refinement of security group operating practices/processes.
• Provide training on tools and team processes for new analysts Co-Ops and Interns.
• Participates in definition of security policies procedures and standards. Implements enhances and execute security policies procedures and standards.
• Serve on projects and initiatives as a subject matter expert and technical advisor as assigned.
• Other information security activities as needed.

RequiredQualificationsthat Enables Your Success

• Bachelors degree in cybersecurity or computer science or a related field with an equivalent combination of education and experience in cybersecurity
• 2 or more industry recognized cybersecurity certification (MAD GSOC GCIH CEH etc.)
• Minimum of 7 years experience in cybersecurity roles
• 4 years working in a hands-on technical IT support role with strong understanding of networking operating systems and Microsoft Active Directory.
• Excellent analytical and problem-solving skills with the ability to assess complex security issues and develop effective solutions.
• Strong written and verbal skills.
• Familiarity with MITRE ATT&CK Sigma rules and YARA for threat detection.
• Experience with XQL KQL or other query languages for large-scale data analysis
• Ability to build relationships and work in a collaborative matrix-driven global environment.
• Strong IT process discipline
• Sound decision making proactive/creative problem solving and strategic thinking skills.
• Must be a self-starter able to manage multiple priorities and meet deadlines while providing quality customer service to internal and external stakeholders.
• Knowledge and experience with security access administration systems and processes
• Knowledge and experience with Windows operating systems and Microsoft Active Directory
• Familiarity with industry standards and frameworks (e.g. NIST CIS Critical Security Controls SANS etc.)

PreferredQualificationsthatDriveyou Forward

• Programming skills necessary to build and maintain interfaces between security tools or automate security processes.
• Experience with AI/ML-based threat detection and automated playbook development.
• Familiarity with threat modeling frameworks and adversary emulation.
• Exposure to OT/ICS environments
• Threat Hunting experience and familiarity with Threat intelligence programs (Recorded Future Threat Grid etc.)
• Experience supporting full vendor stack security applications such as SIEM(Cortex/XSIAM) IDS/IPS endpoint protection and vulnerability scannersexperience
• Project management skills to handle multiple concurrent assignments in a timely manner.

Your Work Environment
At Lubrizolwerecommitted to providing a safe inclusive and empowering environment where you can do your best workwhether in a lab on the production floor or in a hybrid office setting. Depending on your role your work environment may include:

• Standing walking or operating equipment for extended periods

• Working in a lab or manufacturing setting withappropriate PPEprovided

• Use of computers and digital tools in an office or hybrid environment

• Occasional lifting or movement of materials

• Adherence to rigorous safety protocols and ergonomic standards

We continuously invest in our facilities and technologies to ensure they support your well-being productivity and growth. If you requirereasonableaccommodation we are committed to working with you to ensure an inclusive and accessible experience.

Benefits that Empower You

• Competitive salary with performance-based bonus plans

• 401(k) match Age-Weighted Defined Contribution

• Comprehensive medical dental & vision coverage

• Health Savings Account (HSA)

• Paid holidays vacation and parental leave

• Flexible work environment

• Learning and development opportunities

• Career andprofessionalgrowth

• Inclusive culture and vibrant community engagement
  Learn more at!