Security Operations Analyst

View full description

Requirements:

• 5+ years experience in information technology or cyber security roles including security operations/incident response.
• 2+ years experience analyzing large data sets to solve problems and/or manage projects related to security event triage and/or workplace investigations.
• B.S. or M.S. in Cyber Security and Information Assurance, Data Analytics, Computer Science or related field, or equivalent experience.
• Working knowledge of SQL.
• Basic knowledge of scripting or programming in Python, Go, or other programming languages.
• Proven experience with log querying and analysis using one or more industry standard SIEM Platforms.
• Proficiency using analytical methods to inform detection systems or guide strategic response.
• Strong cross-functional collaboration and written/verbal communication skills.
• Ability to think creatively and holistically about identifying and reducing risk in a complex environment.
• High level of judgment, objectivity, and discretion.

Responsibilities:

• Analyze and investigate activity on company devices that could represent a security threat.
• Work cross-functionally with the Security teams to develop solutions for analyzing security events at scale.
• Interpret disparate data sources to report on trends and support investigative requests.
• Collect requirements for enhancements to detection models and response systems.
• Leverage existing systems and data to perform analyses and promote process improvements.
• Provide actionable insights to help identify, prevent, detect, and respond to anomalous or potentially malicious user activity.
• Collaborate effectively with teammates, lead projects, mentor others, and develop quality operational standards across the team.