Intrusion Analyst III (US) Security Operations Center (SOC)

Job description

**Position Summary...**

**What you'll do...**

The Intrusion Analyst III plays a critical role in Walmart’s Security Operations Center (SOC), protecting enterprise systems, data, and customers from cyber threats.

This role leads complex intrusion investigations, enhances detection and response capabilities, and ensures incidents are managed efficiently and in alignment with company standards and industry frameworks.

The Intrusion Analyst III partners across cybersecurity, infrastructure, and business teams to anticipate, detect, and respond to threats while driving continuous improvement in Walmart’s global security posture.

**Essential Responsibilities**

+ Threat Detection & Monitoring – Monitor network, endpoint, and cloud environments for suspicious or malicious activity using advanced detection and correlation tools, including Google Chronicle and Microsoft Sentinel.
+ Incident Response – Lead investigations into potential intrusions, coordinate containment and eradication activities, and ensure recovery aligns with NIST incident response framework principles.
+ Threat Intelligence Integration – Correlate internal alerts with threat intelligence and MITRE ATT&CK classifications to validate and prioritize incidents.
+ SOAR & Automation – Leverage XSOAR and Google SOAR platforms to automate triage, enrichment, and response workflows for improved SOC efficiency.
+ AI-Driven Analysis – Utilize AI-based tools such as Google Agentic AI, ChatGPT, Co-pilot, and Gemini to enhance investigation speed, threat hunting, and reporting accuracy.
+ Forensics & Endpoint Analysis – Use endpoint protection and diagnostic tools such as Microsoft Defender for Endpoint (MDE) and Sysinternals to conduct forensic analysis and validate root causes.
+ Collaboration & Communication – Partner with internal stakeholders, leadership, and external partners to provide situational awareness and actionable recommendations.
+ Mentorship & Leadership – Support junior analysts through coaching, technical guidance, and knowledge sharing to build overall SOC capability.

**Core Competencies**

+ Intrusion Analysis & Detection – Expert understanding of attack lifecycles, network telemetry, endpoint data, and adversarial tactics mapped to MITRE ATT&CK.
+ Incident Handling – Proven ability to lead the full incident lifecycle, following NIST best practices from identification through post-incident recovery.
+ SOAR & Automation Expertise – Ability to design and optimize automated response workflows in XSOAR or Google SOAR to reduce response time and analyst fatigue.
+ AI and Advanced Analytics – Comfortable integrating AI and machine learning tools into investigative processes to improve detection accuracy and reduce false positives.
+ Cyber Risk Awareness – Understands the business impact of identified threats and aligns response actions to minimize operational risk.
+ Continuous Learning & Innovation – Proactively evaluates emerging technologies and integrates them into SOC operations.

**Technical Knowledge & Skills**

+ Experience with SIEM platforms such as Google Chronicle and Microsoft Sentinel for event correlation and detection engineering.
+ Strong knowledge of SOAR technologies (XSOAR, Google SOAR) for orchestration and response automation.
+ Familiarity with endpoint detection and response (EDR) tools such as MDE and Sysinternals.
+ Working knowledge of AI-powered analysis and automation tools including Google Agentic AI, ChatGPT, Co-pilot, and Gemini.
+ Understanding of key cybersecurity frameworks and standards: NIST Incident Response Framework, MITRE ATT&CK, and ISO 27001.
+ Experience conducting forensic analysis, log correlation, and root cause investigations.
+ Strong communication skills to convey findings to technical and non-technical audiences.

**Minimum Qualifications**

+ Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
+ 5+ years of experience in SOC operations, intrusion detection, or incident response.
+ Demonstrated experience leading complex investigations and coordinating cross-functional response efforts.

**Preferred Qualifications**

+ Advanced certifications: GCIA, GCIH, Security+.
+ Experience developing detection rules, playbooks, and automation workflows.
+ Hands-on experience with cloud-native security tooling and hybrid SOC environments.

**Leadership Expectations**

+ Respect the Individual – Build inclusive, trusting relationships; recognize team contributions; foster an environment where associates thrive and perform at their best.
+ Act with Integrity – Model ethical conduct, transparency, and accountability in every action; ensure compliance with cybersecurity and data privacy standards.
+ Serve Our Customers and Members – Protect customer and member trust by delivering secure, resilient technology solutions that enable business success.
+ Strive for Excellence – Demonstrate curiosity, adaptability, and a growth mindset.

Encourage innovation, learning, and continuous improvement across SOC operations.

**Impact of Role**

The Intrusion Analyst III ensures Walmart’s systems remain secure, resilient, and prepared to face evolving cyber threats.

Through technical expertise, automation, and leadership, this role enhances Walmart’s global defense capabilities—protecting associates, customers, and members worldwide.

At Walmart, we offer competitive pay as well as performance-based bonus awards and other great benefits for a happier mind, body, and wallet.

Health benefits include medical, vision and dental coverage.

Financial benefits include 401(k), stock purchase and company-paid life insurance.

Paid time off benefits include PTO (including sick leave), parental leave, family care leave, bereavement, jury duty, and voting.

Other benefits include short-term and long-term disability, company discounts, Military Leave Pay, adoption and surrogacy expense reimbursement, and more.
‎

‎

‎

You will also receive PTO and/or PPTO that can be used for vacation, sick leave, holidays, or other purposes.

The amount you receive depends on your job classification and length of employment.

It will meet or exceed the requirements of paid sick leave laws, where applicable.
‎

For information about PTO, see https://one.walmart.com/notices .

‎

‎

Live Better U is a Walmart-paid education benefit program for full-time and part-time associates in Walmart and Sam's Club facilities.

Programs range from high school completion to bachelor's degrees, including English Language Learning and short-form certificates.

Tuition, books, and fees are completely paid for by Walmart.
‎

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment.

Benefits are subject to change and may be subject to a specific plan or program terms.
‎

For information about benefits and eligibility, see One.Walmart (https://bit.ly/3iOOb1J) .

‎

Herndon, Virginia US-10710:The annual salary range for this position is $108,000.00-$216,000.00
‎

Bentonville, Arkansas US-09050:The annual salary range for this position is $90,000.00-$180,000.00
‎

‎

‎

‎

‎

‎

‎

‎

‎

‎

Additional compensation includes annual or quarterly performance bonuses.
‎

Additional compensation for certain positions may also include:
‎

‎

- Stock
‎

‎

**Minimum Qualifications...**

_Outlined below are the required minimum qualifications for this position.

If none are listed, there are no minimum qualifications._

Option 1: Bachelor’s degree in computer science, information technology, engineering, information systems, cybersecurity or related area and 2years’ experience in intrusion analysis or related area at a technology, retail, or data-driven company.

Option 2: 4 years’ experience in intrusion analysis or related area at a technology, retail, or data-driven company.

**Preferred Qualifications...**

_Outlined below are the optional preferred qualifications for this position.

If none are listed, there are no preferred qualifications._

Certification in Security+, Network+, GISF, CISA ,CISSP, CCSP, or GCIH, Master’s degree in Computer Science, Information Technology, Engineering, Information Systems, Cybersecurity, or related area, We value candidates with a background in creating inclusive digital experiences, demonstrating knowledge in implementing Web Content Accessibility Guidelines (WCAG) 2.2 AA standards, assistive technologies, and integrating digital accessibility seamlessly.

The ideal candidate would have knowledge of accessibility best practices and join us as we continue to create accessible products and services following Walmart’s accessibility standards and guidelines for supporting an inclusive culture.

**Primary Location...**

805 Se Moberly Ln, Bentonville, AR 72712, United States of America

Walmart and its subsidiaries are committed to maintaining a drug-free workplace and has a no tolerance policy regarding the use of illegal drugs and alcohol on the job.

This policy applies to all employees and aims to create a safe and productive work environment.
Walmart, Inc.

is an Equal Opportunity Employer- By Choice.

We believe we are best equipped to help our associates, customers, and the communities we serve live better when we really know them.

That means understanding, respecting, and valuing diversity- unique styles, experiences, identities, abilities, ideas and opinions- while being inclusive of all people.

Required Skill Profession

Other General