Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Security Operations Engineer I, SOC - Provo image - Rise Careers
Job details

Security Operations Engineer I, SOC - Provo

At Qualtrics, we create software the world’s best brands use to deliver exceptional frontline experiences, build high-performing teams, and design products people love. But we are more than a platform—we are the creators and stewards of the Experience Management category serving over 18K clients globally. Building a category takes grit, determination, and a disdain for convention—but most of all it requires close-knit, high-functioning teams with an unwavering dedication to serving our customers.

When you join one of our teams, you’ll be part of a nimble group that’s empowered to set aggressive goals and move fast to achieve them. Strategic risks are encouraged and complex problems are solved together, by passing the mic and iterating until the best solution comes to light. You won’t have to look to find growth opportunities—ready or not, they’ll find you. From retail to government to healthcare, we’re on a mission to bring humanity, connection, and empathy back to business. Join over 5,000 people across the globe who think that’s work worth doing.

Security Operations Engineer I, SOC - Provo 

Why We Have This Role

Qualtrics is growing exponentially and that growth means constantly finding and eradicating threats to our systems. We must continuously evaluate how we secure systems, identify potential threats, and implement alerts and tooling necessary that will help us maintain a strong security posture at scale. We are looking for an experienced engineer to join our security operations center / incident response team who can work with others across the organization, react to alerts, hunt for threats, respond to incidents, and create and implement technical solutions that improve our ability to identify, stop, and eliminate potential threats.

How You’ll Find Success

  • Ability to respond to emergency calls during non-business hours, as needed.
  • Possess the ability to react quickly, decisively, and deliberately.
  • Excellent verbal and written communication skills.
  • Proactive, self-managed, and able to interface well with interdisciplinary teams across the organization, including executive leadership.
  • Your natural curiosity of discovering the unknown drives your success.

How You’ll Grow

  • You’ll increase your technical expertise by operating a wide range of technologies to solve modern security problems in a fast paced SaaS Environment. 
  • You’ll improve your security expertise by responding to real-world security threats across the Qualtrics enterprise and application. 
  • You’ll learn to reduce security risks by collaboratively partnering with a globally distributed team. 
  • You’ll gain expertise around the Qualtrics XM Platform. 

Things You’ll Do

  • Performs Level 1 SOC/IR and shift lead duties as a part of a 24/7 security incident watch team in a multi-timezone follow-the-sun rotation.
  • Performs network and endpoint forensics to establish attack scope and root cause analyses.
  • Performs additional analysis of escalations from SOC engineers and conducts incident review.
  • Ensures communication and escalation of security activities to leadership.
  • Participates in the development of workflow automation to lower response time and eliminate lengthy response times
  • Develop and improve attack remediation strategies, incident handling processes, standard operating procedures, playbooks, and automations.
  • Identifies alerting gaps and develops strategies to increase threat detection coverage.
  • Support FedRamp, ISO27001, SOC, HITRUST, and other audit activities for security operations and incident response.

What We’re Looking For On Your Resume

  • Minimum of a BS degree, preferably in IT Engineering, Computer Science, or any other IT-related field of study.
  • 0-1+ years of experience in the Information Security field.
  • 0-1+ years of prior SOC and/or Incident Response experience.
  • Experience performing analysis utilizing IDS/AV/Firewall consoles.
  • Experience with cloud computing and AWS services.
  • Strong understanding of networking and associated protocols.
  • Development skills including scripting (e.g. Python, shell scripting).
  • Experience with MITRE ATT&CK and Cyber Kill Chain, including Tactics, Techniques, and Procedures (TTPs).
  • Knowledge of STIX/TAXII, SIGMA, DISA STIGs.
  • Experience with Multiple Operating Systems with a System Administrator level skill set on MacOS and Linux.
  • In Qualtrics SOC, all team members know how to code - we don't have pure "Security Analyst" positions. We believe that through automation we can detect and respond to threats better than typical SOCs.

What You Should Know About This Team

  • Innovation at Our Core: Our Security Operations team embraces change and thrives on solving complex challenges. We value experimentation, continuous learning, and push the boundaries of conventional security practices.
  • Collaborative Environment: We believe in the power of teamwork and foster open communication across the team and the wider organization. Your ideas will be heard, and your collaboration will be essential.
  • Data-Driven Approach: We rely on data-driven insights to inform our security strategies, measure effectiveness, and continuously improve our posture.
  • Growth Mindset: We are committed to your professional development. You'll have opportunities to expand your expertise, contribute to high-visibility projects, and advance your career in cybersecurity.
  • Joining our team means stepping into a role that's vital, challenging, and deeply linked to Qualtrics' aim of reshaping industries by harnessing the power of Experience Management and AI.

Our Team’s Favorite Perks and Benefits

  • Work life integration is deeply important to us - we have frequent office events, team outings, and happy hours
  • We take pride in our offices design aiming at cultivating creativity from our rooftop views to an open and collaborative work space
  • On top of the standard benefits package (medical, dental, vision, life insurance, etc) we provide snacks, drinks, and free lunches in our office
  • We believe in sharing Qualtrics’ success - RSU is a part of the compensation for all employees.
The Qualtrics Hybrid Work Model: Our hybrid work model is elegantly simple: we all gather in the office three days a week; Mondays and Thursdays, plus one day selected by your organizational leader. These purposeful in-person days in thoughtfully designed offices help us do our best work and harness the power of collaboration and innovation. For the rest of the week, work where you want, owning the integration of work and life.
 
Qualtrics is an equal opportunity employer meaning that all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristic.
 
​​​​​​​Applicants in the United States of America have rights under Federal Employment Laws:Family & Medical Leave Act,Equal Opportunity Employment,Employee Polygraph Protection Act
 
Qualtrics is committed to the inclusion of all qualified individuals. As part of this commitment, Qualtrics will ensure that persons with disabilities are provided with reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please let your Qualtrics contact/recruiter know.
 
Not finding a role that’s the right fit for now? Qualtrics Insiders is the one-stop shop for all things Qualtrics Life. Sign up for exclusive access to content created with you in mind and get the scoop on what we have going on at Qualtrics - upcoming events, behind the scenes stories from the team, interview tips, hot jobs, and more. No spam - we promise! You'll hear from us two times a month max with fresh, totally tailored info - so be sure to stay connected as you explore your best role and company fit.

Average salary estimate

$70000 / YEARLY (est.)
min
max
$60000K
$80000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Security Operations Engineer I, SOC - Provo , Qualtrics

At Qualtrics, we're on the hunt for a dynamic Security Operations Engineer I to join our SOC team in Provo, Utah. We aim to redefine frontline experiences across the globe, serving over 18,000 clients with cutting-edge solutions. In this role, you'll dive headfirst into safeguarding our infrastructure, responding to alerts, and hunting for potential threats. Picture a collaborative environment where you can engage with diverse teams, implementing solutions to fortify our security posture within a fast-paced SaaS ecosystem. As part of your journey, you’ll participate in network and endpoint forensics, develop attack remediation strategies, and contribute to automating workflows that enhance our incident response times. We’re looking for someone with a proactive mindset and a drive for innovative security practices. Your curiosity to discover the unknown is what will propel you in this role. You'll find not only opportunities for technical growth but also the chance to be part of a team that truly values creativity and teamwork. If you're ready to embrace challenges, solve complex security problems, and make a difference in how businesses operate, Qualtrics is the place for you!

Frequently Asked Questions (FAQs) for Security Operations Engineer I, SOC - Provo Role at Qualtrics
What are the responsibilities of a Security Operations Engineer I at Qualtrics?

As a Security Operations Engineer I at Qualtrics, you will be tasked with performing Level 1 SOC duties, leading shifts in a 24/7 operations center, conducting incident responses, and executing network and endpoint forensics. You'll be at the forefront of identifying security threats, responding to incidents, developing automation to enhance efficiency, and ensuring effective communication with leadership about security activities.

Join Rise to see the full answer
What qualifications are required for the Security Operations Engineer I position at Qualtrics?

To qualify for the Security Operations Engineer I role at Qualtrics, candidates should possess a minimum of a BS degree in IT Engineering, Computer Science, or a related field. Additionally, 0-1 years of experience in the Information Security domain, along with some familiarity with SOC operations or incident response, is preferred. Knowledge of networking protocols and experience with cloud computing, particularly AWS services, will also be beneficial.

Join Rise to see the full answer
How does the Security Operations Engineer I role contribute to Qualtrics' mission?

The Security Operations Engineer I role is crucial at Qualtrics as it directly contributes to maintaining a robust security posture while we serve thousands of clients. By identifying potential threats and efficiently responding to incidents, you'll help uphold the trust our clients place in us, ensuring their data remains secure while enhancing the overall security framework of our operations.

Join Rise to see the full answer
What team culture can a Security Operations Engineer I expect at Qualtrics?

At Qualtrics, the culture within the Security Operations team is one of innovation and collaboration. You'll find a supportive environment that values team input and encourages experimentation. We thrive on tackling complex challenges together, relying on data-driven insights to guide our strategies, and promoting a growth mindset where your professional development is prioritized.

Join Rise to see the full answer
What growth opportunities exist for a Security Operations Engineer I at Qualtrics?

As a Security Operations Engineer I at Qualtrics, you'll have numerous avenues for growth. You'll gain technical expertise by operating diverse technologies and responding to real-world security threats. Opportunities to work on high-visibility projects, contribute to strategic security initiatives, and potentially advance into senior positions in the cybersecurity field are all part of the exciting journey ahead!

Join Rise to see the full answer
Common Interview Questions for Security Operations Engineer I, SOC - Provo
Can you explain your understanding of the SOC framework and the role of a Security Operations Engineer I?

In the interview, focus on outlining the Security Operations Center's (SOC) primary functions, such as monitoring for threats, incident response, and analytical reporting. Emphasize the proactive nature of the role, showcasing how the engineer works alongside other teams to analyze security alerts, minimize risks, and implement remediations.

Join Rise to see the full answer
How do you approach threat hunting and incident response?

When asked this question, detail your systematic approach to identifying potential threats, including analyzing alerts and evaluating logs. Discuss your strategies for prioritizing incidents and the tools or frameworks, such as MITRE ATT&CK, that you utilize during the investigation to understand the scope and respond effectively.

Join Rise to see the full answer
What experience do you have with automated response strategies in a SOC environment?

In your response, demonstrate your understanding of automation in security operations. Share any prior involvement in developing response playbooks or utilizing scripting languages that streamline the incident response process, highlighting specific tools, technologies, or situations where automation improved efficiency.

Join Rise to see the full answer
Can you provide an example of a security incident you addressed?

Use this opportunity to narrate an incident where you played a significant role. Outline the challenge, the steps you took to investigate, the resolution, and the lessons learned. Ensure to underline your analytical skills and your ability to collaborate with teammates.

Join Rise to see the full answer
What tools are you familiar with in the Information Security realm, particularly in SOC?

In your answer, list security tools and software that you have experience with, such as IDS/IPS systems, SIEMs, or endpoint detection solutions. Discuss how you have used these tools to monitor systems, analyze traffic, or detect anomalies, showing your hands-on capabilities with these technologies.

Join Rise to see the full answer
How do you stay ahead of the latest cybersecurity threats?

Discuss your proactive approach to continuing education in cybersecurity by following industry news, participating in online forums, or attending webinars and conferences. Highlight any certifications you currently hold or plan to pursue to demonstrate your dedication to professional development.

Join Rise to see the full answer
In what ways have you collaborated with cross-functional teams in your previous roles?

Speak to instances where you've worked with diverse teams to solve security-related problems, focusing on communication, teamwork, and how shared insights led to improved security practices. Mention your experience collaborating with IT teams to bolster security measures or contributing to internal training sessions.

Join Rise to see the full answer
What is your experience with cloud security, specifically with AWS?

Share any projects or tasks where you have managed security in cloud environments, discussing your understanding of AWS security protocols, identity and access management, and monitoring security events in the cloud. Emphasize any tools or technologies you have used to ensure the cloud infrastructure remains secure.

Join Rise to see the full answer
How familiar are you with compliance frameworks like FedRAMP or ISO27001?

Discuss your awareness or experience working within compliance environments, explaining specific requirements of FedRAMP or ISO27001 that relate to security operations. Highlight your understanding of how these frameworks influence security practices and what you've done to adhere to compliance guidelines.

Join Rise to see the full answer
What do you believe is the most critical quality for a Security Operations Engineer I to possess?

Express your thoughts on qualities such as curiosity, communication skills, and the ability to think critically under pressure. Illustrate your answer by sharing how these qualities have influenced your effectiveness and success in past experiences.

Join Rise to see the full answer
Similar Jobs
Photo of the Rise User
Qualtrics Remote Seattle, Washington, United States
VIEW
Posted 10 days ago

Join Qualtrics as a Software Engineer I to innovate on the Data Platform, helping brands deliver exceptional experiences at scale.

Photo of the Rise User
Qualtrics Remote London, England
VIEW
Posted 11 days ago

Qualtrics is on the lookout for a Senior Analyst, Technical Success Manager to guide clients in maximizing value from their experience management solutions.

Photo of the Rise User
Citi Hybrid New York New York United States
VIEW
Posted 4 days ago
Inclusive & Diverse
Rise from Within
Mission Driven
Diversity of Opinions
Work/Life Harmony

Citi seeks a Production Support Engineer to optimize support for trading desks within the Fixed Income Spread Products group in New York.

Photo of the Rise User
The University of Massachusetts Amherst Remote Remote
VIEW
Posted 2 days ago

Join UMass Amherst as the Chief Information Security Officer, leading their information security initiatives remotely.

Photo of the Rise User
McKesson Hybrid US, Dallas County, TX; Texas, Irving, TX
VIEW
Posted 12 days ago

Join McKesson as a Lead Sr. Network Engineer to drive innovative networking solutions in a leading healthcare company.

C
CACI Remote Blair, NE
VIEW
Posted 5 days ago
Photo of the Rise User
San Diego County Regional Airport Authority Remote No location specified
VIEW
Posted 8 days ago

The San Diego International Airport is looking for a strategic Senior Security & Public Safety Analyst to enhance operational compliance and safety for the airport community.

Photo of the Rise User
Maricopa County (Arizona) Hybrid Phoenix, AZ (On-site)
VIEW
Posted 10 days ago

Join the Maricopa County Sheriff's Office as a PC/LAN Technician, where your technical expertise will aid in providing essential support.

Photo of the Rise User
PGTEK Hybrid No location specified
VIEW
Posted yesterday

Join PGTEK as a Datacenter Hardware Technician, where you'll troubleshoot and maintain critical server infrastructure in a collaborative datacenter environment.

G
Geosyntec Consultants, Inc. Remote Santa Barbara
VIEW
Posted 7 days ago

Join Geosyntec as a GIS Systems Administrator to solve complex environmental challenges using cutting-edge GIS technology.

Photo of the Rise User Qualtrics

At Qualtrics, our mission is to build technology that closes experience gaps.

543 jobs
MATCH
VIEW MATCH
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
INDUSTRY
TEAM SIZE
HQ LOCATION
EMPLOYMENT TYPE
Full-time, hybrid
DATE POSTED
April 11, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok