Cybersecurity Operations Analysts
Position SummaryWe are seeking an experienced Cybersecurity Operations Analyst to support security operations across a highly regulated, enterprise-scale environment. In this role, you will monitor and analyze security events, support incident response activities, and assist with maintaining compliance with internal security policies and external industry standards.
You will collaborate with cross-functional teams, security leadership, and third‑party auditors to ensure the organization maintains strong security posture and follows best practices. The ideal candidate is detail‑oriented, analytical, and able to thrive in a dynamic operational environment.
Key ResponsibilitiesMonitor security events using SIEM and EDR platforms.
Assist with configuration and tuning of SIEM and EDR tools.
Participate in an on‑call rotation for after-hours security support.
Conduct internal phishing simulations and analyze reported phishing incidents.
Support threat modeling efforts by assessing business impact and analyzing vulnerabilities.
Assist with internal and external audit activities as required.
Participate in the organization's Cybersecurity Incident Response Team, using established processes to detect, respond to, and recover from security incidents.
Stay current on Cybersecurity trends and emerging technologies to provide informed recommendations.
Perform Identity & Access Management functions, including approval of RBAC and temporary access escalations.
Create and maintain internal security awareness training, including content related to incident response, phishing, and role‑based training requirements.
Required QualificationsBachelor's degree and 2+ years of Security Operations or SOC experience— OR 3+ years of experience as a SOC Analyst, Incident Responder, or similar role.
Understanding of core security controls (malware protection, firewalls, IDS/IPS, proxies, encryption, log management, etc.).Strong analytical and critical thinking skills.
Excellent time management, attention to detail, and ability to adapt to changing priorities.
Ability to work in a hybrid schedule and travel occasionally within the region.
Preferred Skills2+ years of hands-on experience with SIEM tools such as: QRadar, Splunk, SumoLogic, Kibana, Security Onion, ArcSight, or similar.
Experience working with EDR solutions.
Familiarity with Atlassian tools (Confluence, Jira).Experience analyzing Threat Intelligence, identifying IOCs, and writing detection rules.
Knowledge of Palo Alto Firewalls.
Exposure to cloud environments such as AWS or GCP.Experience with security automation platforms (e.g., XSOAR).Scripting or programming experience (Java, Python, C, Ruby, PowerShell, Bash, etc.).Relevant certifications (CC, SSCP, A+, Network+, Security+, GISF, GSEC, or similar).
Apply Now
Apply Now
You will collaborate with cross-functional teams, security leadership, and third‑party auditors to ensure the organization maintains strong security posture and follows best practices. The ideal candidate is detail‑oriented, analytical, and able to thrive in a dynamic operational environment.
Key ResponsibilitiesMonitor security events using SIEM and EDR platforms.
Assist with configuration and tuning of SIEM and EDR tools.
Participate in an on‑call rotation for after-hours security support.
Conduct internal phishing simulations and analyze reported phishing incidents.
Support threat modeling efforts by assessing business impact and analyzing vulnerabilities.
Assist with internal and external audit activities as required.
Participate in the organization's Cybersecurity Incident Response Team, using established processes to detect, respond to, and recover from security incidents.
Stay current on Cybersecurity trends and emerging technologies to provide informed recommendations.
Perform Identity & Access Management functions, including approval of RBAC and temporary access escalations.
Create and maintain internal security awareness training, including content related to incident response, phishing, and role‑based training requirements.
Required QualificationsBachelor's degree and 2+ years of Security Operations or SOC experience— OR 3+ years of experience as a SOC Analyst, Incident Responder, or similar role.
Understanding of core security controls (malware protection, firewalls, IDS/IPS, proxies, encryption, log management, etc.).Strong analytical and critical thinking skills.
Excellent time management, attention to detail, and ability to adapt to changing priorities.
Ability to work in a hybrid schedule and travel occasionally within the region.
Preferred Skills2+ years of hands-on experience with SIEM tools such as: QRadar, Splunk, SumoLogic, Kibana, Security Onion, ArcSight, or similar.
Experience working with EDR solutions.
Familiarity with Atlassian tools (Confluence, Jira).Experience analyzing Threat Intelligence, identifying IOCs, and writing detection rules.
Knowledge of Palo Alto Firewalls.
Exposure to cloud environments such as AWS or GCP.Experience with security automation platforms (e.g., XSOAR).Scripting or programming experience (Java, Python, C, Ruby, PowerShell, Bash, etc.).Relevant certifications (CC, SSCP, A+, Network+, Security+, GISF, GSEC, or similar).
Apply Now
Apply Now