Security Operations Analyst – Senior

About The Position

Requirements

• U.S. Citizenship.
• Current IAT Level II or higher certification (e.g., Security+ CE, CySA+, CASP+, or equivalent).
• 6+ years of experience in security operations, incident response, or threat analysis.
• Experience in security operations, incident response, or threat analysis.
• Hands-on experience with SIEM platforms (e.g., Splunk) and security monitoring tools.
• Knowledge of common attack vectors, threat actors, and defensive techniques.
• Experience analyzing logs, network traffic, and endpoint activity.
• Familiarity with operating systems (Windows, Linux) and basic networking concepts.
• Strong analytical, troubleshooting, and communication skills.

Nice To Haves

• Experience in a Security Operations Center (SOC) environment.
• Familiarity with threat intelligence platforms and frameworks (e.g., MITRE ATT&CK).
• Experience with endpoint detection and response (EDR) tools.
• Scripting or automation experience (e.g., Python, PowerShell).
• Experience leading incident response efforts or mentoring junior analysts.

Responsibilities

• Monitor security events and alerts using SIEM and other security tools to identify potential threats.
• Analyze and investigate security incidents, including malware, phishing, and unauthorized access attempts.
• Lead incident response activities, including containment, eradication, and recovery efforts.
• Perform threat hunting and proactive analysis to identify emerging risks.
• Correlate data from multiple sources to assess impact and recommend mitigation strategies.
• Develop and maintain incident response procedures and playbooks.
• Document incidents, findings, and remediation actions in accordance with established processes.
• Collaborate with engineering and IT teams to improve security posture and response capabilities.
• Provide mentorship and guidance to junior analysts.