About The Position
The Senior Security Operations Analyst will be responsible for monitoring security alerts, investigating incidents, managing security events, and ensuring timely resolution of security tickets. The role requires strong analytical skills, hands-on security operations experience, and the ability to work independently within established processes and SLAs.
Technical and Professional Requirements
Mandatory
- 6+ years of experience in Security Operations, SOC, Enterprise Security Support, or Infrastructure Security environments.
- Hands-on experience in alert monitoring, incident triage, investigation, escalation, and ticket management.
- Strong working knowledge of:
- CrowdStrike EDR
- CrowdStrike Next-Gen SIEM
- Zscaler
- Forescout NAC
- DLP Solutions
- DNS Security
- Vulnerability Management Tools
- Firewall, Proxy, and VPN Technologies
- Experience with phishing email analysis, vulnerability management, log analysis, security event investigation, and remediation tracking.
- Strong understanding of networking concepts including TCP/IP, DNS, DHCP, Routing, Switching, VPNs, and Firewall Policies.
- Ability to work effectively within SOPs, runbooks, and SLA-driven environments.
- Strong communication, analytical, troubleshooting, and customer service skills.
Preferred
- Exposure to automation and scripting using Python, PowerShell, Bash, APIs, or workflow automation tools.
- Experience contributing to SOP updates, operational reports, dashboards, and RCA documentation.
- Experience in client-facing support or Managed Security Services environments.
- Industry certifications such as Security+, CEH, SSCP, CISSP, ITIL, AZ-500, or SC-200.
Job Responsibilities
- Monitor, triage, investigate, resolve, or escalate security alerts and incidents in accordance with defined procedures.
- Perform proactive monitoring of security platforms, dashboards, and infrastructure security tools.
- Analyze and validate security events to identify legitimate threats and take appropriate actions.
- Manage assigned tickets and incidents, ensuring timely updates, documentation, and closure.
- Coordinate with users and stakeholders to validate potential security threats and support remediation activities.
- Perform phishing email analysis, log review, vulnerability tracking, and incident documentation.
- Contribute to RCA activities, knowledge management, and continuous process improvements.
- Maintain high-quality documentation and ensure compliance with operational standards and SLAs.
Educational Requirements
- Bachelor’s degree.
- Relevant security certifications will be an added advantage.