Why This Job is Featured on The SaaS Jobs
Security operations roles in SaaS carry a distinct mix of cloud exposure, always-on availability expectations, and a high volume of identity and application-layer signals. This SOC and incident response position sits at the intersection of detection, triage, and coordinated response, with collaboration across infrastructure, application security, and compliance functions that are typical in mature subscription software environments.
For a SaaS security career, the work builds durable fundamentals: interpreting telemetry, assessing business impact, and translating findings into clear incident documentation that other teams can act on. The emphasis on improving monitoring and detection capabilities also maps well to how SaaS organizations evolve security over time, from reactive alert handling toward more repeatable detection engineering and better operational readiness.
This role is best suited to professionals who prefer structured investigative work, can stay methodical under a 24/7 operational model, and enjoy partnering across disciplines rather than operating in isolation. It will appeal to someone who wants hands-on incident ownership and steady progression in tooling fluency, especially where SIEM and endpoint detection platforms are central to daily decision-making.
The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.
Job Description
About the Role:
Wrike is seeking a SOC / Incident Response Analyst to help safeguard our organization’s most valuable assets and data from emerging cyber threats, operating within a fast-paced 24/7 environment.
Team Dynamics:
As a SOC Analyst, you will collaborate with a multidisciplinary security team comprising Infrastructure Security Engineers, Security Engineers, Application Security Engineers, and Compliance specialists. You’ll find yourself among a group of passionate and approachable professionals, dedicated to continuous improvement and teamwork in keeping our organization secure.
Your Impact:
- Monitor, analyze and triage security alerts and events
- Assess risk, impact of potential incidents, and take appropriate remediation steps and actions
- Employ various security tools and technologies to detect and investigate cyber threats
- Work collaboratively with other teams, including incident responders, to ensure proper escalation and resolution of cases
- Document and report security incidents
- Participate in further development and improvement of security monitoring and detection capabilities
- Stay up to date with the latest security trends, vulnerabilities, and best practices.
Your Qualifications:
- Over 2 years of experience in a Security Operation Centre (SOC) or similar role
- Knowledge of network fundamentals and common security threats
- Well-developed logical thinking capabilities and problem-solving skills
- Strong communication skills, both written and verbal
Standout Qualities:
- Experience with security information event management (SIEM) and extended detection and response (e.g. Rapid7, Splunk, Wazuh, Microsoft Defender for Endpoint, Crowdstrike)
- Industry certificates is an advantage
- Experience with log analysis and correlation
Why Join Wrike?
- 25 calendar days of paid vacation
- Sick Leave Compensation (5 Paid Uncertified Sick Days)
- Parental Leave: 18 Weeks Maternity / 4 Week Paternity
- 2 Volunteer Days
- Medical Insurance (Employees + Dependents)
- Hybrid Working Model
- School Allowance (Up to €600/month for school aged kids)
- Simcard w/ Unlimited Internet Access for active employees
- Office Lunch Allowance (via Wolt) on Wednesdays / Thursdays
Your recruitment buddy will be Alexandra Vorobyova, Lead Recruiter.
#LI-AV1
