Security Analyst (SOC)

Gartner•Irving, TX

26d•Hybrid

About The Position

Gartner is looking for a Security Analyst with a strong blend of technical expertise, analytical ability, and interpersonal skills to join its Security Operations team. The ideal candidate is experienced in investigating and responding to security incidents, skilled in working with a variety of security tools and cloud environments, and comfortable collaborating across teams. You should be able to critically evaluate alerts and detection logic, automate repetitive tasks, and communicate findings clearly to both technical and non-technical stakeholders. This role is responsible for providing cyber security analysis, incident response, and defending Gartner's network and intellectual properties.

Requirements

Bachelor's in Computer Science, Information Security, or Engineering
1-3 years of experience in a SOC environment
Commitment to continuous improvement and operational excellence
Demonstrated critical thinking and ability to challenge existing processes, rules, and detections
Strong interpersonal and communication skills; able to collaborate and work proactively in a time-sensitive environment
Experience with incident analysis, technical reporting, and identifying tuning opportunities
Digital Forensics and Incident Response (DFIR) skills
Ability to automate tasks and code solutions (Python, PowerShell, Bash)
Hands-on experience with cloud environments, including AWS, Azure, and GCP
Experience with Microsoft 365 (M365) security monitoring and investigations, distinct from general Azure security experience
Hands-on experience with security tools such as SIEM, EDR, web proxy, and email security solutions
Advanced skills in reading, interpreting, and tuning SIEM queries and detection logic (e.g., SPL, SQL, KQL)

Nice To Haves

Threat hunting or red/purple team experience (practical or lab-based) is a plus
Relevant certifications (e.g., GCIH, GCFA) are a plus

Responsibilities

Investigate and respond to security events and incidents end to end, providing detailed notes and technical reports
Hunt for malicious activity, misconfigurations, and other anomalies
Participate in team projects to enhance SOC capabilities and develop innovative detection content aligned with cybersecurity frameworks (e.g., ATT&CK, Cyber Kill Chain)
Create and maintain runbooks and playbooks for repeatable tasks
Build and implement automation to improve security monitoring and eliminate repetitive tasks
Ensure smooth handover of alerts/incidents across global team members and provide rotational on-call support for emergencies
Collaborate with key stakeholders and cross-functional teams to identify, respond to, and remediate information security issues
Bring forward ideas and solutions to drive continuous improvement and operational excellence

Benefits

Competitive compensation.
Limitless growth and learning opportunities.
A collaborative and positive culture - join a diverse team of professionals that are as smart and driven as you.
A chance to make an impact - your work will contribute directly to our strategy.
Enjoy the flexibility of working from home and the energy of collaborating with peers in our dynamic offices.
20+ PTO days plus holidays and floating holidays in your first year.
Extensive medical, dental insurance and vision plan.
401K with corporate match, immediate vesting.
Health-and-wellness-related allowance programs.
Parental leave.
Tuition reimbursement.
Employee Stock Purchase Plan.
Employee Assistance Program.
Gartner Gives Charity Match.