Logo for Mercury Insurance

SOC Engineer

Role overview

Qualifications

  • BS degree in Computer Science, Information Technology, related field; and/or equivalent combination of education or work experience
  • 2-4 years of 24x7x365 Security Operations experience and related technologies
  • Understanding of IT infrastructure and networking
  • Familiarity with common security threats, vulnerabilities, and mitigation strategies

Responsibilities

  • Monitor security tools systems: Analyze logs, alerts, and data for suspicious activity
  • Investigate potential threats: Determine if alerts are real incidents and identify vulnerabilities
  • Supervise all Incident/Security issues, including preliminary triage, troubleshooting and remediation
  • Document findings for future reference and improvement, including process roadmaps, change management validations, and user/system impacted incident management and resolutions

About the company

Mercury Insurance logo

Mercury Insurance

Insurance

At Mercury, we have been guided by our purpose to help people reduce risk and overcome unexpected events for more than 60 years. We are one team with a common goal to help other others. Everyone needs insurance and we can’t imagine a world without it. Our team will encourage you to grow, make time to have fun, and work together to make great things happen. We are an award-winning company, and we owe that to our amazing team! We care about our people, and we mean it. We reward our talented professionals with a competitive salary, bonus potential, and a variety of benefits to help our team members reach their health, retirement, and professional goals. Mercury was founded in 1961 by George Joseph, Mercury’s Founder and Chairman. Back in the 50s, everyone paid the same rate, regardless of their driving record. Joseph decided he could create a new system by developing an insurance company that used different factors to create fair and equitable rates for a variety of drivers. β€œWe called our company Mercury, because I wanted us to be fast and nimble, just like the Roman God of business and merchants,” says Joseph. β€œHe was also responsible for delivering good news to people on Earth, which is exactly what we do for Mercury customers every day.” We, Mercury Insurance (NYSE-MCY), are a leading independent broker and agency writer of automobile insurance in California and one of the fastest growing automobile insurers in the nation. We were ranked as the fourth largest private passenger automobile insurer in California, with over $4.5 billion in total assets, 4,500 team members, and 8,000 independent agents. We started by providing comprehensive coverage options for auto and expanded our offerings into home, condo, renters, and business insurance, as well as mechanical protection. We operate through a network of local, independent agents in Arizona, California, Florida, Georgia, Illinois, Nevada, New Jersey, New York, Oklahoma, Texas and Virginia.

Company details

Company typeLarge
IndustryInsurance
Company size5001 - 10000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Overview:

Join an amazing team that is consistently recognized for our achievements and culture, including our most recent Forbes award of being one of America's Best Midsize Employers for 2026!

 

Position Summary:

 

The primary job function of the Security Operations Center Engineer is to identify, investigate, and escalate alerts and events to safeguard sensitive information from unauthorized access or breaches of malicious and potentially damaging intent in a 7x24x365 environment. Manages and configures security monitoring tools. Assess security systems and measures for weaknesses and possible improvements. Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions. Must be ethical, curious, and detail oriented. 

 

Will also be responsible for definition of security process road maps and knowledge articles (KB), change management validations, user/system impacted security incident management and resolutions; Administration of Security Operations Center owned tools including scripting, customizations, report building, alert modifications, automations and maintenance; Minimize risk and exposure to system security and business interruptions of company's infrastructure; actively participate in disaster recovery and BCP events. Some scripting, coding and/or technical certificates may be needed to achieve certain job functions, so willingness to expand technical attributes will be expected.

 

Geo-Salary Information:

An in-person interview may be required during the hiring process

 

State specific pay scales for this role are as follows:

$83,670 to $161,815 (NJ, NY, WA, HI, AK, MD, CT, RI, MA)

$76,064 to $147,104 (NV, OR, AZ, CO, WY, TX, ND, MN, MO, IL, WI, FL, GA, MI, OH, VA, PA, DE, VT, NH, ME)

$68,457 to $132,394 (UT, ID, MT, NM, SD, NE, KS, OK, IA, AR, LA, MS, AL, TN, KY, IN, SC, NC, WV)

 

In CA: Typical hiring range is $110,468  to $153,428  

 

The expected base salary for this position will vary depending on a number of factors, including relevant experience, skills and location.

Responsibilities:

Essential Job Functions:

  • Monitor security tools & systems: Analyze logs, alerts, and data for suspicious activity.
  • Investigate potential threats: Determine if alerts are real incidents and identify vulnerabilities.
  • Supervise all Incident/Security issues, including preliminary triage, troubleshooting and remediation.
  • Gather evidence: Collect and analyze evidence to understand incident scope and impact.
  • Contain the threat and remediate vulnerabilities: Quickly contain the incident to minimize damage, and implement patching, configuration changes, or other measures to address the exploited vulnerabilities.
  • Recover from the incident and report to management: Assist in restoring affected systems and data to their normal state, and keep management informed about security incidents and response efforts.
  • Documentation: Document findings for future reference and improvement, including process roadmaps, change management validations, and user/system impacted incident management and resolutions.
  • Administer SOC/NOC tools: Manage and administer all SOC/NOC Operations center owned tools, including scripting, customizations, report building, alert modifications, automations, and maintenance.
  • Minimize risk and exposure to system security and business interruptions of the company's infrastructure.
  • Participate in disaster recovery and BCP events: Actively participate in disaster recovery and Business Continuity Plan (BCP) events.e

 

Qualifications:

Education:

Minimum:

  • BS degree in Computer Science, Information Technology, related field; and/or equivalent combination of education or work experience

Preferred:

  • GIAC Security Essentials Certification
  • GIAC Security Leadership Certification
  • ISACA Certified Information Security Manager
  • Microsoft Certified Systems Engineer: Security
  • (ISC)2 SCCP
  • (ISC)2 CISSP
  • (ISC)2 ISSAP
  • CCSK4

Experience:

Minimum:

  • 2-4 years of 24x7x365 Security Operations experience and related technologies

Preferred:

  • 5 or more years of 24x7x365 Security Operations and related technologies

Skills & Abilities:

Enterprise Security Operations support experience

  • Enterprise security document creation.
  • Understanding of IT infrastructure and networking: This includes knowledge of operating systems, network protocols, and basic infrastructure components.
  • Security principles and technologies: Familiarity with common security threats, vulnerabilities, and mitigation strategies like firewalls, intrusion detection/prevention systems (IDS/IPS), and SIEM tools.
  • Scripting and automation: Ability to write basic scripts to automate tasks and generate reports.
  • Incident response procedures: Understanding of established processes for handling security incidents, including containment, eradication, and recovery.
  • Security tools and software: Proficiency in using the specific security tools and software typically employed by a security organization.
  • Experience in using ExtraHop, Qradar, Splunk and/or any other security related tools for the visibility, monitoring, detection, alerting, response, and investigation of security related events. 
  • Communication: Clear and concise communication with technical and non-technical audiences, including reporting incidents to management and collaborating with other IT teams (including public speaking, critical business writing skills, process documentation and knowledge base article composure)
  • Critical thinking and problem-solving: Ability to analyze complex security data, identify root causes of incidents, and develop effective solutions.
  • Attention to detail: Meticulous focus on identifying subtle anomalies and potential threats within vast amounts of data.
  • Decision-making under pressure: Making quick and informed decisions during critical security incidents.

Preferred:

  • ServiceNow
  • SIEM Solutions
  • TrustWave
  • Email Protection Solutions
  • Endpoint Detection & Response Solutions
  • Microsoft 365 Security Suite
  • Incident Management Communication tools
  • CV/CIRT Gov’t notification process
  • Load balancers & Web Application Firewall Solutions
  • Firewall/router/networking equipment
  • Web Content Filtering (WSS)
  • Secure Web Gateway Solutions
  • ITIL Foundations certifications (V3 or V4)
About the Company:

Why choose a career at Mercury?

At Mercury, we have been guided by our purpose to help people reduce risk and overcome unexpected events for more than 60 years. We are one team with a common goal to help others. Everyone needs insurance and we can’t imagine a world without it.

Our team will encourage you to grow, make time to have fun, and work together to make great things happen. We embrace the strengths and values of each team member. We believe in having diverse perspectives where everyone is included, to serve customers from all walks of life.

We care about our people, and we mean it. We reward our talented professionals with a competitive salary, bonus potential, and a variety of benefits to help our team members reach their health, retirement, and professional goals.

 

Learn more about us here: https://www.mercuryinsurance.com/about/careers

Perks and Benefits:

We offer many great benefits, including:

  • Competitive compensation
  • Flexibility to work from anywhere in the United States for most positions
  • Paid time off (vacation time, sick time, 9 paid Company holidays, volunteer hours)
  • Incentive bonus programs (potential for holiday bonus, referral bonus, and performance-based bonus)
  • Medical, dental, vision, life, and pet insurance
  • 401 (k) retirement savings plan with company match
  • Engaging work environment
  • Promotional opportunities
  • Education assistance
  • Professional and personal development opportunities
  • Company recognition program
  • Health and wellbeing resources, including free mental wellbeing therapy/coaching sessions, child and eldercare resources, and more

Mercury Insurance is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by federal, state, or local law.

Pay Range: USD $83,670.00 - USD $161,815.00 /Yr.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
Β·

SysOps Engineer Related jobs

Other jobs at Mercury Insurance

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.