Senior Analyst Cyber Security Operations - (SOC) - (Remote Opportunity)

About the position Responsibilities • Manage day-to-day cyber security operations in partnership with MSSP, including incident investigation, containment, and remediation. • Develop and maintain runbooks for potential incidents, documenting responsibilities of stakeholders. • Respond to Cyber Security incidents, ensuring identification, mitigation, and remediation of malicious activities. • Design, implement, and maintain SIEM and threat detection content, including dashboards and detection rules. • Continuously tune detections to reduce false positives and enhance threat detection capabilities. • Research and hunt for tactics, techniques, and procedures used by advanced threat groups. • Develop and implement detection mechanisms and automation workflows using SIEM tools. • Collaborate with development and operations teams for efficient monitoring and logging of security events. • Incorporate threat intelligence feeds for enrichment and alerting in the SIEM. • Advise organizational leaders on actions during security events and potential threats. • Ensure compliance with regulations and standards such as Data Privacy and PCI-DSS. • Mentor and develop talent within the team. Requirements • Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related field, or equivalent experience. • 3-5 years of information security experience with a focus on Security Operations and Incident Response. • 3+ years of experience in a Cyber Security Operations Center (SOC) or Incident Response team. • Proficiency with SIEM platforms (e.g., Splunk) and security automation tools. • Experience with security tools such as EDR, IDS/IPS, SWG, and firewalls. • Cyber Security related certifications (e.g., SANS, CISSP) preferred. • Technical knowledge of Linux, Windows, or MacOS systems and network infrastructure. • Experience with log analysis tools and query languages. • Experience with scripting languages (e.g., Python, PowerShell). • Familiarity with cyber kill chain, MITRE ATT&CK framework, and threat hunting. • Experience with ServiceNow or similar ticketing platforms. Nice-to-haves • Cyber Security related certifications (e.g., SANS, CISSP, Splunk Power User) are preferred. Benefits • Travel Perks and Benefits for both ALG Vacations and Hyatt • Medical, Dental and Vision Insurance • Basic Life Insurance • Short- & Long-Term Disability • Paid Parental Leave • Corporate Wellness Program • Travel Discounts & Deals • Paid Time Off & Holidays • 401(k) Plan with Company Match Apply tot his job