Sr. Information Security Operations Analyst

About The Position

Requirements

• Extensive experience with Microsoft's security ecosystem, including Sentinel, Microsoft 365 Defender suite, and Azure Security Center.
• Experience with threat hunting and data analysis.
• Comfortable scripting or automating tasks using Python, PowerShell, Bash etc.
• Strong understanding of security information and event management (SIEM) tools
• Knowledge of network security protocols and technologies (e.g., firewalls, intrusion detection/prevention systems).
• Experience leading or mentoring junior analysts or working in cross-functional teams.
• Must be a U.S. citizen.
• Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information.
• As a condition of employment, candidates will be required to pass a pre-employment drug screen.

Nice To Haves

• Relevant industry certifications such as Microsoft Certified: Security Operations Analyst Associate (SC-200), CompTIA Security+, GIAC certifications, or CISSP are preferred.
• Excellent written and verbal communication skills.
• Strong analytical and critical-thinking abilities with a keen attention to detail.
• Ability to work both independently and collaboratively in a fast-paced environment.

Responsibilities

• Serve as a key member of the incident response team, leading the investigation and containment of security incidents, performing root cause analysis, and developing remediation plans.
• Manage and optimize our Microsoft security platforms, including Microsoft Sentinel, Microsoft 365 Defender (Endpoint, Identity, Cloud Apps), and Azure Security Center.
• Monitor and report on adherence to security policies, procedures, and controls. Assist with tracking compliance across various security frameworks (e.g., NIST, ISO 27001, CMMC).
• Conduct information security risk assessments to identify vulnerabilities, assess potential impact, and recommend corrective actions to mitigate risk.
• Proactively hunt for security threats and vulnerabilities by analyzing security events, logs, and network traffic.
• Assist in the development, documentation, and continuous improvement of security standards, policies, and incident response playbooks.
• Help deliver security awareness training and communicate security best practices to both technical and non-technical stakeholders.

Benefits

• Saab provides an excellent working environment offering professional growth opportunities, competitive wages, work-life balance, a business casual atmosphere and comprehensive benefits.
• Medical, vision, and dental insurance for employees and dependents
• Generous paid time off, including 8 designated holidays
• 401(k) with employer contributions
• Tuition assistance and student loan assistance
• Wellness and employee assistance resources
• Employee stock purchase opportunities
• Short-term and long-term disability coverage