Senior Security Operations Analyst

Toronto, ON

Wayfair Inc.

Shop Wayfair for A Zillion Things Home across all styles and budgets. 5,000 brands of furniture, lighting, cookware, and more. Free Shipping on most items.

View company page

L3 SOC Analyst

Wayfair is the online leader for home furnishings and decor. Through technology and innovation, Wayfair makes it possible for shoppers to quickly and easily find exactly what they want from a selection of more than 8 million items across home furnishings, décor, home improvement, housewares and more. 


Wayfair is growing our Security Operations Center and we’re looking for a talented Cybersecurity Operations Analyst to join and help grow our team. Our Security Operations team is tasked with monitoring and protecting Wayfair from an ever growing number of security risks, and finding new and creative ways to do so. We have a strong focus on engineering and innovation, and are seeking individuals who love to find new problems and hate fixing the same problem twice.


What You’ll Need

  • 3+ years experience working in cyber security operations
  • Experience with enterprise incident detection and response for on premise and cloud environments 
  • Strong working knowledge of threat actors tactics techniques and procedures (TTPs), and the ability to prioritize detection for the environment/company. 
  • Experience developing SOC processes and procedures following industry best practices for both enterprise and cloud environments
  • Strong working knowledge of Linux and Windows, and how to detect threats on these systems at scale
  • Implement detection acceptance criteria to minimize alert fatigue, and to guide use case development 
  • Assist developing and implementing key results, metrics and measurements to ensure a high standard
  • Hands on SIEM experience building YARA-L rules, tuning them, and responding to alerts
  • Experience with scripting languages: Python, or PowerShell
  • Experience with large scale data warehouse tech - the ability to work with large data sets and write SQL for incident response,  analysis, and correlation. Preferably experience with Google BigQuery
  • Excellent communication skills, especially the ability to communicate cybersecurity threats to technical and non-technical stakeholders
  • Develop and improve playbooks and processes for detection and response
  • Expertise leading incident response efforts, in the role of incident commander and/or investigation lead 
  • Expert in hands-on-keyboard analysis and forensics for Windows, macOS, Linux and Cloud  
  • Author of Python tools to automate and parallelize collection and processing of investigate data, at-scale 
  • Developed metrics reporting pipeline, automated dashboard, monthly reports and review process 


What You’ll Do

  • Logging - Ensure the security operations team has security relevant cloud, infrastructure and application logs in a parsed format to a unified destination that has best practice data retention
  • Detection - Respond to security alerts & review dashboards to monitor for suspicious activities/alerts for enterprise, cloud and application sources. Analyze suspicious activities/alerts including malware analysis and forensics and respond with appropriate actions. 
  • Response - Follow and improve procedures for Incident Response


Azure, GCP, ELK, Crowdstrike Falcon, Mandiant Redline, Kali, PowerShell, Python, Windows, Linux, macOS, EnCase 6/7/8, FTK Forensic, SOC2, NIST CSF, ISO 27001, MITRE ATT&CK, OpenIOC, YARA,  YAML, Snort, PowerForensics, Sysmon, Security Automation, Orchestration and Response (SOAR), Cuckoo Sandbox, VirusTotal, CyberChef,, Regular Expressions (RegExp), SQL, Slack, Jira, ServiceNow, Jupyter notebooks, Threat Modeling 

Assistance for Individuals with Disabilities

Wayfair is fully committed to providing equal opportunities for all individuals, including individuals with disabilities. As part of this commitment, Wayfair will make reasonable accommodations to the known physical or mental limitations of qualified individuals with disabilities, unless doing so would impose an undue hardship on business operations. If you require a reasonable accommodation to participate in the job application or interview process, please let us know by completing our Accomodations for Applicants form.

Need Assistance?

For more information about applying for a career at Wayfair, visit our FAQ page here

About Wayfair Inc.
Wayfair is one of the world’s largest online destinations for the home. Whether you work in our global headquarters in Boston or Berlin, or in our warehouses or offices throughout the world, we’re reinventing the way people shop for their homes. Through our commitment to industry-leading technology and creative problem-solving, we are confident that Wayfair will be home to the most rewarding work of your career. If you’re looking for rapid growth, constant learning, and dynamic challenges, then you’ll find that amazing career opportunities are knocking.

No matter who you are, Wayfair is a place you can call home. We’re a community of innovators, risk-takers, and trailblazers who celebrate our differences, and know that our unique perspectives make us stronger, smarter, and well-positioned for success. We value and rely on the collective voices of our employees, customers, community, and suppliers to help guide us as we build a better Wayfair – and world – for all. Every voice, every perspective matters. That’s why we’re proud to be an equal opportunity employer. We do not discriminate on the basis of race, color, ethnicity, ancestry, religion, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, veteran status, genetic information, or any other legally protected characteristic.

We are interested in retaining your data for a period of 12 months to consider you for suitable positions within Wayfair. Your personal data is processed in accordance with our Candidate Privacy Notice (which can found here: If you have any questions regarding our processing of your personal data, please contact us at If you would rather not have us retain your data please contact us anytime at 

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Automation Azure Cloud CrowdStrike ELK EnCase Forensics GCP Incident response ISO 27001 Jira Kali Linux MacOS Malware MITRE ATT&CK Monitoring NIST PowerShell Privacy Python Scripting SIEM Snort SOAR SOC SOC 2 SQL TTPs VirusTotal Windows

Perks/benefits: Career development Startup environment Team events

Region: North America
Country: Canada
Job stats:  11  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.