Sr SOC Analyst

About the Role 

The Senior SOC Analyst Threat Hunting Specialist is responsible for proactively identifying investigating and mitigating sophisticated cyber threats that target Mattels global enterprise. This role goes beyond traditional alert triage and incident response focusing on proactive detection of malicious activity that evades automated defenses. The analyst leverages advanced threat intelligence behavioral analytics endpoint telemetry and network data to uncover hidden adversary activity and improve organizational resilience. This position requires deep technical expertise in threat hunting detection engineering and forensics with the ability to translate threat insights into actionable detections and security improvements. 

Roles and Responsibilities 

• Plan design and execute proactive threat hunts to identify stealthy adversaries and undetected compromises across Mattels environment. 

• Develop hypotheses based on threat intelligence adversary behaviors and environmental telemetry to guide hunting activities. 

• Analyze endpoint network and cloud data to identify anomalies malicious behavior and emerging attack techniques. 

• Create test and maintain advanced detection use cases in SIEM EDR and NDR platforms to improve detection coverage. 

• Collaborate with Incident Response teams to validate findings contain threats and support recovery efforts during security incidents. 

• Perform deep-dive forensic investigations using log data EDR telemetry and network captures to identify root causes and attacker movement. 

• Integrate internal and external threat intelligence into hunting workflows to improve detection accuracy and contextual awareness. 

• Develop and tune detection logic to reduce false positives and enhance signal-to-noise ratio in alerting pipelines. 

• Contribute to the development and continuous improvement of SOC playbooks workflows and standard operating procedures (SOPs). 

• Mentor SOC analysts in threat hunting methodologies investigation best practices and detection engineering principles. 

• Collaborate with Red Teams Security Engineering and Threat Intelligence teams to simulate attacks validate defenses and close detection gaps. 

• Perform periodic assessments of detection coverage and visibility to ensure alignment with the MITRE ATT&CK framework. 

• Lead or support purple team exercises to assess SOC readiness identify detection gaps and strengthen defensive posture. 

• Participate in continuous improvement initiatives to enhance logging telemetry and automation capabilities within the SOC. 

• Stay informed about emerging threats APT campaigns and evolving adversary tradecraft relevant to the organizations threat landscape. 

Qualifications :

Skills and Qualifications 

Required: 

• 5 years of experience in a SOC threat hunting or incident response role including at least 2 years in a senior capacity. 

• Strong technical expertise in proactive threat hunting detection engineering and digital forensics. 

• Deep familiarity with SIEM platforms such as Splunk Microsoft Sentinel Chronicle or QRadar. 

• Experience with EDR/NDR tools including CrowdStrike SentinelOne Carbon Black or Darktrace. 

• Hands-on experience with network traffic analysis tools (Wireshark Zeek) and endpoint telemetry analysis. 

• Proficiency in scripting or automation using Python PowerShell or Bash to enhance hunting and investigation workflows. 

• Comprehensive understanding of MITRE ATT&CK threat intelligence integration and adversary behavior analysis. 

• Knowledge of Windows Linux and macOS internals including attack surfaces and forensic artifacts. 

• Strong analytical mindset with the ability to identify complex attack chains and detect subtle indicators of compromise. 

• Excellent written and verbal communication skills for technical reporting and stakeholder updates. 

Preferred: 

• Bachelors degree in Cybersecurity Computer Science or a related field (or equivalent experience). 

• Certifications such as GIAC GCIA GCTI GCFA GNFA GCIH GCFE or Certified Threat Intelligence Analyst (CTIA). 

• Experience working with cloud platforms (AWS Azure GCP) and containerized environments (Docker Kubernetes). 

• Familiarity with SOAR tools and automation frameworks to streamline threat hunting and response. 

• Proven ability to collaborate across red blue and purple teams to drive detection and response improvements. 

• Knowledge of frameworks such as NIST 800-61 CIS Controls and ITIL incident management best practices. 

Additional Information :

Dont meet every single requirement At Mattel we are dedicated to an inclusive workplace and a culture of belonging. If youre excited about this role but your past experience doesnt align perfectly with every qualification in the job description we still encourage you to apply. You may be just the right candidate for this or other roles.

How We Work:
We are a purpose driven company aiming to empower generations to explore the wonder of childhood and reach their full potential. We live up to our purpose employing the following behaviors:

• We collaborate: Being a part of Mattel means being part of one team with shared values and common goals. Every person counts and working closely together always brings better results. Partnership is our process and our collective capabilities is our superpower.
• We innovate: At Mattel we always aim to find new and better ways to create innovative products and experiences. No matter where you work in the organization you can always make a difference and have real impact. We welcome new ideas and value new initiatives that challenge conventional thinking.
• We execute: We are a performance-driven company. We strive for excellence and are focused on pursuing best-in-class outcomes. We believe in accountability and ownership and know that our people are at their best when they are empowered to create and deliver results.

Our Approach to Flexible Work:
We embrace a flexible work model designed to empower a culture of growth optimism and wellbeing where every employee can reach their full potential. Combining purposeful in-person collaboration with flexibility our focus is to optimize performance and drive connection for moments that matter.

Who We Are:
Mattel is a leading global toy and family entertainment company and owner of one of the most iconic brand portfolios in the world. We engage consumers and fans through our franchise brands including Barbie Hot Wheels Fisher-Price American Girl Thomas & Friends UNO Masters of the Universe Matchbox Monster High MEGA and Polly Pocket as well as other popular properties that we own or license in partnership with global entertainment companies. Our offerings include toys content consumer products digital and live experiences. Our products are sold in collaboration with the worlds leading retail and ecommerce companies. Since its founding in 1945 Mattel is proud to be a trusted partner in empowering generations to explore the wonder of childhood and reach their full potential.

Mattels award-winning workplace culture has been recognized by Forbes Fast Company Newsweek Great Place to Work TIME and more.

Visit us at  is an Equal Opportunity Employer where we want you to bring your authentic self to work every day. We welcome all job seekers and all applicants will receive consideration for employment.

Videos to watch:
The Culture at Mattel
Corporate Philanthropy

Remote Work :

No

Employment Type :

Full-time