Job Description

The Co-Op will be part of Security Risk Advisors’ CyberSOC Practice. This role will be involved in the day-to-day, 24x7, operations of the SOC and there is clear path for career progression. This is an outstanding opportunity to work with a wide variety of tool sets and various client organizations.

Core Responsibilities:

• Continuously monitor and triage security alerts across endpoint, network, identity, and cloud telemetry.

• Investigate alerts to determine severity, scope, and whether activity is benign, suspicious, or malicious; escalate per documented procedures.

• Perform initial incident response support activities such as evidence collection, timeline development, and basic containment recommendations under supervision.

• Use SIEM, EDR, NDR/NSM, and SOAR platforms to detect, investigate, and respond to threats; examples include Splunk or Microsoft Sentinel (SIEM), CrowdStrike Falcon or Microsoft Defender for Endpoint (EDR).

• Leverage threat intelligence and common frameworks (e.g., MITRE ATT&CK) to enrich investigations and communicate attacker behavior clearly.

• Thoroughly document work in case management systems, including investigation steps taken, evidence reviewed, decisions made, and recommended next actions.

• Communicate status and findings to internal leadership and clients with professionalism and clarity (written and verbal).

• Contribute to continuous improvement by identifying recurring false positives/noisy alerts and providing feedback for tuning and playbook updates.

• Maintain proficiency through required training, labs, and knowledge sharing; follow policies to protect confidential information.

Position Type/Expected Hours of Work 

This is a full-time temporary co-op position with 40 working hours expected weekly, typically worked over five consecutive days. New hires may be assigned to any of our three daily shifts (morning, day, or night) and will work a schedule that includes either Saturday or Sunday. Shifts are assigned based on current coverage needs and resource geolocation. Once assigned, you can expect a consistent shift week to week.

Requirements

• A demonstrated passion for technology.
• Work effectively as part of a team, yet function well with independent responsibilities.
• Experience or coursework around incident investigation and forensics, information security and computer networking.
• Interest in taking the initiative for personal growth and development.
• Flexibility to accommodate changing schedules of client and project needs and willingness to work extended hours when needed.
• Strong written and verbal communication skills with a high level of professionalism. Skills and Qualifications: Creative Problem Solving, Attention to Detail, Coordination, Reporting, Team Work, Highly Motivated, Writing, Decision Making, Analyzing Information.

Preferred Qualifications and Experience

• Coursework, labs, internship, or work experience in one or more of: incident investigation, digital forensics fundamentals, information security, systems administration, or computer networking.

• Familiarity with common log sources and security concepts (e.g., authentication logs, Windows event logs, DNS, HTTP, email security).

• Comfort learning new tools and following documented processes; strong attention to detail and case documentation habits.

• Strong written and verbal communication skills and a high level of professionalism in client-facing environments.

• Ability to work effectively on a team while owning independent tasks and meeting deadlines.

• Interest in automation/scripting (e.g., PowerShell or Python)

• Security certifications (e.g., Security+, Network+,).

Benefits

Corps Training Program: Our SRA Corps training program is a six-week experience for May new hires that begins with one week of orientation at our Philadelphia headquarters. Whether new hires are interns, co-ops, or full-time consultants, SRA Corps members meet our founders, learn our values, and experience a day in the life of a cybersecurity consultant. Following orientation, Corps members return to their home office and participate in trainings such as Consulting 101, Enterprise Networks, Cloud Security and more. Our leaders provide hands-on offensive, defensive, and frameworks boot camps.

Mental Health Services: SRA has partnered with BetterHelp to provide SRA employees with free mental health support. BetterHelp connects individuals with licensed therapists for chat, video, and phone sessions.

(Subject to change)

Security Risk Advisors is a fast growing 200+ person company with offices in Philadelphia, Rochester, New York and Kilkenny, Ireland. We deliver state-of-the-art cyber security consulting services to Fortune 1,000 organizations in the Financial Services, Healthcare, Pharmaceutical, Technology, Industrial and Consumer Products industries. Security Risk Advisors maintains a fast-paced and innovative culture that focuses exclusively on engagements that solve the emerging needs of our clients. Our environment fosters the continuous professional development necessary to remain at the top of our game.

To find out more about us, please visit our website at: https://sra.io

Security Risk Advisors is an Equal Opportunity Employer and prohibits discrimination or harassment of any kind. All employment decisions at SRA are based on business needs, job requirements, and individual qualifications, without regard to race, color, sex, sexual orientation, gender identity or expression, age, religion, national origin, disability, marital or family status, veteran status, medical condition, or any similar category protected under federal, state, or local laws.