Security Operations Centre (SOC) Analyst

Malmö /
R&D – Engineering /
From our technology to our team members, Neo4j is built on relationships. 

As part of Neo4j product engineering, you will work together with a diverse team of talented colleagues from around the world. Our culture encourages engineers who want to become deep experts in a particular field – or to build broad expertise across several technologies. Our engineers regularly work with peers in field engineering and experience the full lifecycle of the systems they build. 

We build technology that helps cure cancers, addresses diabetes, and gets humans to Mars. We're proud to fight fraud, crush pandemics, and even help journalists uncover the truth. Neo4j’s engineering teams are located in Malmö, Sweden and London, UK. 

Please submit your CV and cover letter in English.

Role Purpose:

Working with the Security Operations Lead, in this role you will operate our security operations capability so that it provides an appropriate monitoring, detection, investigation and response capability. Using a range of tools, working with your security engineering colleagues, you will be part of a team building a SOC service that supports our client and internal services.

Core responsibilities:

    • Incident Triage, Analysis, Response and Investigations based on alerts
    • Monitoring and responding to endpoint detection and response
    • Build monitoring use cases
    • Investigating detected, suspicious behaviours and escalating as appropriate
    • Continually developing incident handling
    • Build and develop incident playbooks
    • Add context to a confirmed incident to aid understanding and response
    • Support incident/crisis management
    • Proactive threat hunting in line with threat intelligence
    • Create reports and visualisations of security attacks
    • Tracks trends for metrics and reporting
    • Continuously work to decrease false positives
    • Maintain the detection rules database

From you, we're looking for:

    • A love for information security; at least most parts of it!
    • Degree educated or the equivalent experience
    • A minimum of 2 years experience or knowledge in security operations or related roles.
    • Enjoy the challenge of delivering security into business operations.
    • Works independently to perform analyses and investigations
    • Experience or knowledge of working in modern cloud environments such as AWS, GCP or Azure.
    • Experience using Security Information Event Management (SIEM) and related technologies.
    • Strong analytical and investigation skills.
    • Are proficient in several programming languages, including Python, and PHP. Excellent written and verbal communication skills as well as receptive listening skills, with ability to present complex ideas in a clear, concise fashion to technical and non-technical audiences. Experience or knowledge in mentoring or training approaches for security operations.
    • An awareness of hacking techniques and trends and investigation or awareness of Cyber Threat Intelligence in a business context. Nice to have:  A software development background is desirable.
    • Appropriate certifications or relevant experience on SOC operations.


    • SE
    • #LI-GW1
    • #LI-Remote
Neo4j Values: 
Our work in Neo4j Engineering is guided by our company values:

(we)-[:THRIVE_IN]->(:Culture {type: [‘Open’, ‘Inclusive’})
(we)-[:ASSUME]->(:Intent {direction:’Positive’})
(we)-[:WELCOME]->(:Discussions {nature: ‘IntellectuallyHonest’})

Why Join Neo4j?
Neo4j is one of the 20 most popular databases in the world, and the leader in the rapidly emerging Graph Database category. We’re building the technology that enables connected data to solve the world’s most pressing problems. You’ll work on unique engineering projects that challenge what’s possible. 

We have customers in every industry across the globe, and our products a proven product/market fit. Joining our team is an opportunity to shape the future of data and analytics.

We pride ourselves on being a welcoming team. Most of us would agree that one of the best parts of working at Neo4j is the people we get to work with.

We encourage you to apply even if you don’t 100% fit the qualifications above. Why? Because we are committed to building an environment that fosters belonging, which means valuing intellectually honest discussions and being receptive to new ideas and perspectives.

One of our central objectives is to provide an inclusive, diverse, and equitable workplace for everyone to develop their potential and have a positive, career-defining experience.  

About Neo4j:
Neo4j is the leader in graph database technology. As the world’s most widely deployed graph database, we help organizations – including NASA, UBS and Volvo Cars – to reveal and predict how people, processes and systems interrelate. Using this relationships-first approach, applications built using Neo4j tackle connected data challenges such as analytics and artificial intelligence, fraud detection, real-time recommendations and knowledge graphs.

Neo4j is committed to protecting and respecting your privacy. Please read the privacy notice regarding Neo4j's recruitment process to understand how we will handle the personal data that you provide.
More information at