Senior Information Security Ops Analyst

About The Position

Requirements

• 7+ years of hands-on information security operational experience
• 5+ years of incident response and forensics experience (including triage, analysis, containment, and eradication)
• Demonstrated expertise in security controls design, implementation, and assessment
• Proven ability to mentor and develop junior security professionals
• Significant experience leading or contributing to the growth and maturation of information security programs
• Strong analytical and problem-solving skills with the ability to work under pressure
• Excellent written and verbal communication skills
• Relevant security certifications (GIAC, CISSP, CEH, or equivalent)
• Experience with SIEM platforms, endpoint detection and response (EDR), and security orchestration tools

Nice To Haves

• AI/ML in Cybersecurity: Hands-on experience implementing or leveraging machine learning and AI technologies to enhance detection, threat hunting, or automated response
• Enterprise Security Tools: Familiarity with platforms like Splunk, Elastic, CrowdStrike, Sentinel, or similar
• Threat Hunting: Advanced experience in proactive threat hunting and using data science techniques to identify threats
• Programming/Scripting: Proficiency in Python, PowerShell, or similar languages to automate security tasks
• Software assurance: Record of improving the security of applications through code review.
• Cloud Security: Experience securing cloud environments (AWS, Azure, GCP)
• Industry Leadership: History of speaking, publishing, or contributing thought leadership in the security community

Responsibilities

• Lead and Mentor: Oversee incident response activities, manage triage and analysis workflows, and mentor junior security analysts to develop their technical and investigative capabilities
• Incident Response Operations: Serve as a senior responder for critical incidents; lead IR investigations from initial detection through root cause analysis and remediation; develop post-incident playbooks and lessons learned
• Security Controls: Design, implement, and optimize security controls across the enterprise; conduct control assessments, gap analyses, and recommendations for control enhancements
• Cyber Program Development: Contribute to the strategic growth and maturation of our information security program, including process improvements, tool optimization, and capability building
• AI-Driven Defense: Research, evaluate, and operationalize AI/ML solutions to enhance threat detection, anomaly identification, and security automation; work with security teams to integrate intelligent tools into our defense posture
• Threat Intelligence & Analysis: Conduct advanced threat analysis, develop indicators of compromise, and translate threat intelligence into actionable defensive measures
• Compliance & Documentation: Ensure all security activities align with regulatory requirements; maintain comprehensive documentation of security incidents, controls, and remediation efforts
• Cross-Functional Collaboration: Work with IT operations, engineering, and business units to embed security into processes and systems

Benefits

• Restricted Stock Units
• Performance Stock Units
• Onsite healthcare in Vermont
• Comprehensive medical coverage
• Dental and vision
• Short- and long-term disability
• Paid parental leave
• Daily lunch provided
• Flight lessons