Security Analyst

Mexico

Apply now Apply later

Important Information

Experience: +6 years

Job Mode: Full-time

Work Mode: Work from home

 

Job Summary

The Senior Security Operations Analyst will play a critical role within our organization's cyber security framework, specializing in security event analysis, detection, and response. The ideal candidate will have a strong background in security operations and a proven track record of handling complex security incidents. The ideal candidate will demonstrate a comprehensive grasp of cyber security fundamentals, proficiency in risk and vulnerability management, and a strong understanding of security event analysis and triaging in SaaS and Cloud production environments. 

Responsibilities and Duties

  • Review and analyze security alerts generated by the SIEM system, prioritizingand triagingalerts based on severity and potential impact
  • Manage and optimize security operation technologies and functions such as SIEM, TIP, andincident response case management to enhance the organization's security visibility
  • Evaluate security data sources and use cases for consideration in the improvement and expansion of the team’s detection capabilities
  • Lead incident response efforts, including investigation, containment, eradication, and recovery from security incidents and breaches. Participating in the team’s on-call rotation for critical incident escalations
  • Conduct root cause analysis and post-incident reviews
  • Develop and evangelize incident response playbooks and procedures for CSIRT
  • Steer the Cyber Threat Intelligence (CTI) program to continually monitor emerging security threats, trends, and technologies. Provide recommendations for improving security controls and processes to mitigate risks efficiently
  • Gather and analyze cyber threat intelligence from various sources, correlate it with security events and incidents, and provide actionable insights to the security team and stakeholders
  • Conduct proactive threat hunting activities to identify potential threats, develop and implement methodologies and tools, and document findings with recommended mitigation strategies
  • Monitor and analyze user behavior to detect potential insider threats, investigate suspicious activities and recommend appropriate actions, and develop and implement insider threat detection and response strategies
  • Provide guidance, support, and mentorship to junior team members who demonstrate a willingness to learn and take on new challenges
  • Aid in the gathering of evidence for compliance audits
Qualifications and Skills
  • Broad and deep knowledge of security concepts, principles, and best practices
  • 5-7 years information security and/or technology experience, 3+ years in a similar cyber security analyst role
  • Exceptional decision-making skills, demonstrating a track record of effectively evaluating the costs and benefits of various courses of action to find the optimal solution
  • Comfortable communicating with a broad audience, including executives, clients, and cross-functional teams
  • Skilled in the analysis of threat event data and recognition of tactics, techniques, and procedures (TTPs) employed by threat actors
  • Experience with operating and managing SIEM (e.g., Google Chronicle, Splunk) and
  • Endpoint, Detection and Response (EDR) tools
  • Familiar with scripting languages for automation (e.g., Python, Bash, PowerShell)
  • An understanding of applying MITRE ATT&CK or similar frameworks in enterprise environments 
  • Experience with cloud security and monitoring (e.g., AWS, Azure, Google Cloud)
  • Strong background in incident response and handling complex security incidents
  • Experience in cyber threat intelligence gathering and analysis and threat hunting methodologies and tools
  • CISSP, GIAC or comparable certifications strongly preferred 

About Encora 

Encora is a global company that offers Software and Digital Engineering solutions. Our practices include Cloud Services, Product Engineering & Application Modernization, Data & Analytics, Digital Experience & Design Services, DevSecOps, Cybersecurity, Quality Engineering, AI & LLM Engineering, among others. 

At Encora, we hire professionals based solely on their skills and do not discriminate based on age, disability, religion, gender, sexual orientation, socioeconomic status, or nationality. 

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  1  0
Category: Analyst Jobs

Tags: Analytics Audits Automation AWS Azure Bash CISSP Cloud Compliance CSIRT DevSecOps EDR GCP GIAC Incident response LLMs MITRE ATT&CK Monitoring PowerShell Python SaaS Scripting SIEM Splunk Threat detection Threat intelligence TTPs Vulnerability management

Perks/benefits: Team events

Region: North America
Country: Mexico

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.