Title:  IT Security Analyst (Tier 2 Soc)

Descartes Unites the People and Technology that Move the World

The need for efficient, secure, and agile supply chains and logistics operations has become ever more critical and complex.  By combining innovative technology, powerful trade intelligence and the reach of our network, Descartes helps get goods, information, transportation assets, and people where they’re needed, when they’re needed. 

We’re one of the most broadly deployed logistics and supply chain technology companies in the world. More than 26,000 customers around the globe use our cloud-based solutions to transform the way they move inventory and information to enhance productivity, better serve customers, thrive competitively, keep pace with evolving regulations, and respond to rapidly changing market conditions. Descartes is publicly traded (Nasdaq:DSGX, TSX:DSG) with headquarters in Waterloo, Ontario, Canada, and offices and partners around the world. With record financial performance for more than 16 years, we lead the industry in innovation investment. Every day, logistics service providers, manufacturers, retailers, distributors, and other logistics-intensive businesses of all sizes rely on our scale, stability, and comprehensive solution footprint to move what’s most important to them. Learn more at www.descartes.com.

We’re growing fast and invite you to join our amazing team. 

Mission
The Tier 2 SOC Security Analyst exists to strengthen Descartes’ ability to detect, investigate, and respond to sophisticated security threats across a complex enterprise environment. This role ensures that escalated alerts are deeply analyzed, detection capabilities continuously improve, and the organization becomes faster, smarter, and more resilient in defending against evolving cyber risks.

Outcomes: What Success Looks Like
1. High-Fidelity Incident Response: Investigate and resolve escalated security events with clear determination of scope, root cause, and remediation actions, improving mean time to detect (MTTD) and respond (MTTR) by measurable targets. 
2. Improved Detection Quality: Reduce false positives and increase true positive detection rates through continuous tuning across Sentinel, CSE, and other SOC platforms. 
3. Operational Excellence in SOC: Maintain high-quality case management, queue hygiene, and reporting standards, contributing to consistent weekly SOC reporting and metrics accuracy. 
4. Automation Impact: Deliver automation solutions that reduce manual SOC workload and improve response speed (e.g., reporting, enrichment, workflow automation). 
5. Enhanced Visibility: Successfully onboard and normalize new log sources and detection use cases, improving coverage across cloud, identity, endpoint, and network domains. 
6. Proactive Threat Identification: Conduct regular threat hunting activities that uncover previously undetected risks and translate findings into actionable detection improvements. 
7. Stronger Security Posture: Collaborate cross-functionally to validate suspicious activity, improve controls, and support incident response readiness across the organization. 

Skills & Competencies — How the Work Gets Done
Technical & Role-Specific
•    Strong experience with SIEM and security platforms (e.g., Microsoft Sentinel, Sumo Logic / CSE, CrowdStrike, Defender, Zscaler, GuardDuty) 
•    Ability to perform deep technical investigations across cloud, endpoint, identity, email, and network domains 
•    Detection tuning, rule development, and alert optimization experience 
•    Scripting and automation skills (Python, PowerShell, or workflow automation tools) 
•    Understanding of log ingestion, parsing, normalization, and enrichment processes 
•    Familiarity with MITRE ATT&CK and threat hunting methodologies 

Culture Add: TEAM Values We value team members who communicate with transparency, sharing information openly and building trust across functions. You bring excellence and expertise to your craft, holding a high bar for quality while continuously improving your skills. You demonstrate accountability by owning outcomes, following through on commitments, and taking responsibility for results. You are driven by metrics, using data and experimentation to inform decisions and deliver measurable impact.

Aptitudes
•    Smart: Able to quickly understand complex systems, connect ideas, and make sound judgments.
•    Curious: Actively seeks to understand customer problems, emerging technologies, and better ways of working.
•    Coachable: Open to feedback, willing to adapt, and continuously improving through learning.

What’s in It for you
•    Meaningful Impact: Play a direct role in defending a global enterprise and shaping the maturity of SOC capabilities beyond basic alert handling 
•    Growth & Development: Expand into advanced areas such as detection engineering, automation, threat hunting, and purple teaming 
•    Technology Exposure: Work hands-on with modern cloud, identity, endpoint, and SIEM technologies in a dynamic environment 
•    Collaboration & Visibility: Partner with infrastructure, DevOps, and security leadership, gaining exposure across the business 
•    Autonomy & Ownership: Opportunity to take initiative in improving processes, detections, and tooling while contributing to a high-performing SOC team 
•    Balanced Environment: Participate in a structured SOC operation with defined processes, metrics, and continuous improvement focus

Salary Range: $65,000 - $75,000 CAD annually -Compensation information provided is a good faith estimate for this position only. Factors that may be used to determine your actual salary may include your specific skills as well as the years of experience you have. Similar positions located in different geographic regions will not necessarily receive the same compensation. 

Join Us

As we scale, we’re looking for new doers, collaborators and innovators to join Descartes in uniting the people and technology that move the world as the Global Leader in Logistics and Supply Chain Technology. We’re entrepreneurial, hardworking, geeky-in-a-good way problem solvers. Guided by our values, we nurture a TEAM focused culture that invests in people and creates opportunities for advancement across a broad spectrum of career paths. We prioritize work-life balance and foster an environment with the space to take ownership, to be heard, and to carve a path for your individual accomplishments to help drive our success. At Descartes, everyone has a voice and the best idea wins, regardless of who makes it. We offer competitive compensation, great benefits, remote and flexible work hours, and the opportunity to join a company on an awesome mission with a great existing team and trajectory.

Descartes also has a deep sense of environmental responsibility. Learn more about how we helped our customers save over 552,000 metric tons of CO2 in 2020 by reducing fuel and paper consumption: https://www.descartes.com/who-we-are/social-responsibility-sustainability/environmental-impact.  Join a team that’s committed to working with customers to conserve resources and enhance sustainability.

If you feel you have 70% of the qualifications we are looking for, and Descartes sounds like the team and the mission you want to be part of, apply now. We can't promise it will be a fit, but we do promise to consider your experience.

We conduct a mix of in-person and virtual interviews. Virtual interviews are held via Microsoft Teams and are recorded and transcribed. We may utilize AI tools to support our hiring team in notetaking, summarization, and internal training. AI tools are not used in our recruitment process for decision-making purposes. Recordings, transcripts, and notes are used for recruitment, including improvement of our process, and record-keeping purposes. Should you have any questions or concerns about our process, please connect with our hiring team in advance of scheduled interviews. 

We are an Equal Employment employer. We do not discriminate in hiring on the basis of sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected status, or any other characteristic protected by federal, provincial, or local law. For more information about our commitment to equal employment opportunity, please review our Code of Business Conduct and Ethics at Descartes.com. Descartes is committed to working with and providing reasonable accommodations to job applicants with disabilities. Applicants in North America with a disability who require a reasonable accommodation for any part of the application or hiring process can email us at hrna@descartes.com. Provide your name and contact information along with the accommodation needed to assist you with the application process. Your request will be responded to as soon as possible. Reasonable accommodations will be determined on a case-by-case basis.