SOC Analyst Intern

Every day, ePayPolicy helps over 10,000 insurance companies speed up incoming and outgoing payments. By helping them move from manual, outdated forms of payment collection to modern payment tools, we help their companies work faster and more efficiently. (Check out our almost 5-star customer reviews.)

How do we do it? With powerful payment tools that just work. Our secure, online ACH and credit card payment page is the core product for many of our companies. But we also provide an integrated suite of helpful features for insurance companies of all sizes, including point-of-sale financing, payables network tools, and check reconciliation, all within a single dashboard.

Our expert, live support team helps deliver exceptional care every day, with an industry-leading 97% customer retention rate. Our customers love us. We love them.

Founded in 2014, our growing team is based in Austin, TX, and has clients in all 50 US states. We’ve grown over 300% in the last three years - with big plans for the future.

Job Description:

The Security Operations Center (SOC) Analyst Intern will play a vital role in supporting the defense of ePayPolicy’s corporate and production environments. Reporting to the Head of Information Security, this position offers a hands-on opportunity to learn how to monitor, detect, and respond to security threats in real-time.

This is an operational learning role suited for a vigilant problem-solver who is eager to hunt for threats and investigate anomalies. You will work closely with experienced engineers to distinguish between false positives and genuine security incidents, gaining practical experience in how a modern SOC operates.

In this role, you will:

• Monitor & Triage: Learn to actively monitor security alerts from our SIEM, EDR (CrowdStrike), and cloud environments (Azure) to identify potential threats.

• Incident Response Support: Assist the team in the initial investigation of security incidents, including phishing attempts and malware alerts, following the Incident Response Lifecycle.

• Defense Optimization: Participate in purple team exercises to validate endpoint configurations (CrowdStrike) and help verify that our detection logic effectively catches simulated attacks.

• Threat Hunting: Learn proactive threat hunting techniques to search for undetected threats or indicators of compromise (IoCs) within our network.

• Vulnerability Management: Assist in analyzing vulnerability scan results and coordinating with the IT Ops team to track remediation efforts.

• Email Security: Help analyze suspicious emails reported by employees, review anti-phishing controls, and provide feedback to users.

• Rule Tuning: Assist senior team members in tuning SIEM rules and EDR policies to reduce noise and filter out false positives.

• Documentation: Maintain accurate records of investigations and incident response actions within our ticketing system, helping to build out our internal knowledge base (Playbooks).

What you bring:

• Education/Background: A background in Computer Science, Cybersecurity, or Information Systems—whether you are currently pursuing a degree, possess equivalent self-taught skills, or are an IT professional looking to transition into security.

• Technical Curiosity:

• Basic familiarity with EDR concepts or tools (CrowdStrike, SentinelOne) and SIEM logic.

• Understanding of Cloud Security basics (Microsoft Azure, Azure AD/Entra ID).

• Solid foundation in Networking protocols (TCP/IP, DNS, HTTP/S) and an interest in learning how to analyze packet captures or logs.

• Analytical Mindset: Ability to look at data and spot patterns or anomalies that don't look right.

• Certifications: Current pursuit of certifications such as CompTIA Security+, CySA+, or Azure Security Engineer Associate is a plus.

• Communication: Ability to communicate clearly and ask questions when you don't understand a concept—we value curiosity over knowing everything on day one.

• Passion: A genuine interest in the cybersecurity landscape, staying current with the latest threat intelligence, CVEs, and attack vectors.

While our interns are not eligible for insurance, 401K, or Unlimited PTO plans, they will have access to the following benefits:

• Company Holidays

• In-office perks (Daily lunch stipend, access to the onsite gym, and two fully-stocked kitchens)

• Company provided laptop

• Open invite to company-events

• Company swag

Why ePayPolicy

• Competitive salary

• Comprehensive benefits package with employer-paid basic life and disability premiums

• 401K

• Unlimited PTO

• Company-sponsored quarterly “ePayItForward” initiatives 

• Supportive and inclusive company culture with a focus on work/life balance

• Fully-stocked kitchen

• Lunch stipend when working onsite

• Open communication (We won’t box you in! If you have a cool idea for a product improvement or a suggestion on how to improve the customer experience, let’s talk about it. We value everyone’s ideas and opinions.)

• Huge opportunity for growth

We operate on a hybrid schedule for in-office employees. Standard schedules are three days per week in the office, however, the cadence and days are determined by each team and manager. 

We value diversity here at ePayPolicy and understand the importance of creating a safe and comfortable work environment, encouraging individualism and authenticity in every member of our team. We strive to create an accessible and inclusive experience for all candidates. If you need an accommodation during the application or recruiting process, please submit a request to our team via this Interview Accommodation form: https://forms.gle/xKppyKTSqfTUi7hz5