Senior Security Operations Analyst

Pearson Education - Durham, NC

posted about 2 months ago

Full-time - Mid Level
Durham, NC
Publishing Industries

About the position

As a Senior Security Operations Analyst, you will play a critical role in managing and implementing threat monitoring for FedRAMP systems. This position involves enhancing threat monitoring analytics, performing threat hunting, and engaging in cybersecurity incident response activities. You will be responsible for various security operations, which include participating in monitoring and investigations, assisting with SEIM log ingestion, integration, and management, as well as developing threat monitoring use cases and creating SEIM detection rules. Your expertise will be essential in identifying false positive alerts and performing SEIM rule tuning, while also participating in cybersecurity incident response efforts. In addition to these responsibilities, you will conduct data and log analysis as part of your threat-hunting activities and monitor and report on security compliance within the technology organization in accordance with established security policies. Your role will require a strong understanding of security requirements and the ability to distill these into practical, proportionate, and understandable instructions and guidance across various software products. You will also interact with senior management stakeholders, leveraging your excellent verbal and written communication skills to build strong relationships across all business units and organizations. This position is ideal for someone with a solid background in information security, particularly in cloud environments, and who is passionate about enhancing security operations and contributing to a culture of security awareness within the organization.

Responsibilities

  • Manage and implement threat monitoring for FedRAMP systems.
  • Enhance threat monitoring analytics and perform threat hunting activities.
  • Engage in cybersecurity incident response activities.
  • Participate in monitoring and investigations related to security incidents.
  • Assist with SEIM log ingestion, integration, and management.
  • Develop threat monitoring use cases and create SEIM detection rules.
  • Identify false positive alerts and perform SEIM rule tuning.
  • Conduct data and log analysis as part of threat-hunting activities.
  • Monitor and report on security compliance within the technology organization according to security policies.
  • Interact with senior management stakeholders and build strong relationships across business units.

Requirements

  • Bachelor's degree in information systems, business management, or equivalent work experience.
  • 3+ years' experience in analyst and/or consultant roles in IT security.
  • 3+ years' experience working with public cloud providers (Azure, AWS).
  • Basic knowledge of cloud technology and terminology.
  • Moderate proficiency with using Azure Sentinel and KQL.
  • Knowledge of and experience in developing and documenting requirements.
  • Experience and understanding of technology-based organizations.
  • Some experience with logging and alerting platforms, including SIEM integration.
  • Current understanding of industry trends and emerging threats.
  • Knowledge of incident response methodologies and technologies.
  • Experience in investigation techniques and report writing.
  • Experience in risk management methods and logging of risks.
  • Experience in process mapping and delivery of effective process maps and associated procedures.
  • Ability to interact with senior management stakeholders and communicate effectively.

Nice-to-haves

  • Background in network, host, database, and application security.
  • Experience driving a culture of security awareness.
  • Ability to provide effective training and education to others.
  • Coding skills to enable hands-on automation of processes.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service