Senior Security Operations Analyst
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Security Operations Analyst responsible for monitoring security threats and incident response for Newfold Digital. Collaborating with teams to strengthen security operations and reporting structures.
Responsibilities:
- Develop and deliver security reports and metrics to support operational awareness and leadership decision-making.
- Identify and support mitigation of information security risks, including evaluating projects and initiatives for alignment with security requirements, policies, and standards.
- Support internal and external audits by collecting and analyzing evidence, assessing control effectiveness, and ensuring adherence to established security frameworks and policies.
- Track and manage remediation activities, including corrective action plans and audit findings, ensuring timely resolution of identified security issues.
- Identify, investigate, and respond to security incidents, including analyzing root cause and impact to contain threats and reduce organizational risk.
- Maintain and support security tools, controls, and monitoring capabilities to ensure effective detection and response.
- Develop, implement, and continuously improve threat-informed detections and automated response playbooks, including use case development, rule creation, tuning, validation, and optimization through incident feedback and testing.
- Monitor systems and security telemetry for violations, vulnerabilities, and anomalous activity.
- Analyze and apply threat intelligence to enhance detection, response, and situational awareness.
- Identify and support onboarding and validation of security telemetry to ensure effective detection and visibility.
- Collaborate with cross-functional teams to support incident response, remediation, and security improvements.
- Assist in the evaluation and selection of security technologies and solutions to support detection, monitoring, and response capabilities.
Requirements:
- A degree in Cybersecurity, Information Technology, Computer Science, or related field is desirable.
- Industry-recognized certifications are a plus and may include: CompTIA Security+ or CySA+, Microsoft SC-200, GIAC Security Essentials (GSEC), GIAC Certified Incident Handler (GCIH), GIAC Certified Intrusion Analyst (GCIA), GIAC Cyber Threat Intelligence (GCTI), GIAC Security Operations Certified (GSOC), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and relevant cloud or security vendor certifications (e.g., SIEM, SOAR, endpoint, or cloud security platforms).
- 5-7 years of experience in security operations or related disciplines.
- Working knowledge of security controls including access control, authentication, encryption, system integrity, and logging as applied to security monitoring and detection.
- Experience with security operations including monitoring, incident response, and incident management procedures, with the ability to investigate, escalate, and respond to security events.
- Ability to develop, modify, and maintain threat detection rules within SIEM platforms, including tuning alerts and improving detection fidelity.
- Understanding of security telemetry, including log collection and ingestion (e.g., syslog, Windows Event Forwarding, ELK), normalization, and data quality considerations to support effective detection and visibility.
- Strong knowledge of operating systems (Windows, Linux, macOS), identity systems (e.g., Active Directory), and network fundamentals (TCP/IP, DNS) as they relate to security monitoring and investigation.
- Experience with endpoint, network, and host-based security tools including EDR, IDS/IPS, firewalls, vulnerability scanners, and host-based detection/prevention systems.
- Ability to analyze and correlate data across multiple security and telemetry sources to identify patterns, anomalies, vulnerabilities, and potential security threats.
- Experience applying security frameworks such as MITRE ATT&CK to map adversary behaviors and support detection and response development.
- Experience with malware analysis, network forensics, and digital forensics concepts and tools; reverse engineering skills are a plus.
- Ability to assess security threats and implement timely mitigations under pressure.
- Experience using scripting languages such as Python, PowerShell, or equivalent to support automation, analysis, and response activities.
- Strong collaboration and communication skills with the ability to build effective relationships across technical and non-technical teams.
- Experience with security platforms and tools including SIEM, SOAR, EDR, vulnerability management, and threat intelligence tools (e.g., Google SecOps/Chronicle, Microsoft Defender for Endpoint, SentinelOne Singularity, Tanium Threat Response, Recorded Future).
- Experience with cloud security monitoring and native security services across AWS, Azure, Google Cloud, or OCI is a plus.
- Familiarity with security-focused frameworks, methodologies, and best practices for detection, response, and vulnerability management is a plus.
- Ability to analyze and apply threat intelligence to support detection, investigation, and response activities.
- Experience developing or working with automated response workflows and playbooks (SOAR).
Benefits:
- • Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
Similar Jobs
Staff Security Operations Engineer
Staff Security Operations Engineer enhancing security practices at Apollo. Collaborating with engineering teams to conduct threat modeling and drive secure software development.
SecOps Consultant
Google SecOps Consultant responsible for developing and managing Google SecOps environments. Collaborating with clients and managing services to ensure alignment with business processes.
Associate Cyber Security Operations Analyst
Join S&C Electric as an Associate Cyber Security Operations Analyst. Support cybersecurity initiatives by collaborating with technical teams and developing compliance strategies.
SOC Analyst
SOC Analyst monitoring client security events and responding to incidents while collaborating in a 24x7 SOC team. Seeking candidates with cybersecurity experience and a passion for information security.
Security Operations Engineer
Security Operations Engineer designing and implementing SecOps tools for a large energy sector project. Role involves developing detection capabilities and supporting incident response activities.
Security Operations Administrator
Security Operations Administrator managing security alerts and incident response for client's operations. Requires hands-on experience with various security platforms and independent operational management.
Security Operations Engineer
Security Operations Engineer monitoring security alerts and working with senior engineers to protect data. Investigating suspicious activities and refining defensive posture within a cybersecurity team.
Senior Security Operations Engineer
Senior Security Operations Engineer joining CentralReach to design secure architectures with AI-driven enhancements. Focused on cloud security and automated security capabilities across the organization.
Security Operations Center Analyst
Security Operations Center Analyst role with RapDev, a leading Datadog partner. Involves security monitoring, incident response, and working with cloud security solutions.
SOC Analyst – Contract
SOC Analyst at Sunshine Enterprise enhancing security monitoring and incident response capabilities. Focused on threat detection and investigating security events in a centralized operations environment.
IT Security Operations Center Specialist
IT Security Operations Center Analyst monitoring and responding to security alerts for Lincoln Financial. Ensuring the security of the network perimeter and analyzing traffic for threats.
Security Incident Response Specialist, Fluent Ukrainian
Security Incident Response Specialist at SupportYourApp, handling incidents and coordinating responses globally in a fully remote role.
Cyber Defender, SOC Analyst
Cyber Defender responding to threats and improving detection capabilities for an AI security company. Collaborating across functions to strengthen overall security posture in a fast-paced environment.
Analyst, Security Operations Center
Analyst in SEC managing event intake and incident response at Brightspeed. Focus on cyber security monitoring and incident management.
IT and Security Operations Analyst
Join UpGuard IT and Security Operations team handling core IT tasks and improving systems. Engage with a global workforce to support a thriving cybersecurity environment.
Senior Director Analyst – Security Operations, Threat Detection, Response and Automation
Security Operations Analyst focused on security operations research and client engagement. Supporting Gartner clients with expertise in threat detection, incident response, and automation.
Security Operations Engineer
Security Operations Engineer role at FICO focusing on cyber protection and automation development. Involved in incident response and security operations for a leading analytics company.
Regional SOC Analyst
As a Regional SOC Analyst, you'll shape the security architecture at Kelvion and enhance cyber security in an international environment.
Development Security Operations Engineer, Healthcare Consulting
Development Operations Engineer for Sellers Dorsey designing automated systems and tools in healthcare consulting. Bridging software development and security engineering operations to optimize delivery systems.
SOC Team Lead
SOC Team Lead managing a Security Operations Center team and guiding customer onboarding processes. Providing leadership and ensuring delivery of cybersecurity operations for clients.