Security Analyst
Tasks
- Advise users on containment and recovery
- Configure and tune monitoring tools
- Coordinate with SOC engineering and agency staff
- Create lessons learned recommendations
- Detect threats and attack patterns
- Document SOC runbooks and procedures
- Escalate critical incidents to Tier 3
- Hunt for threats using TTPs
- Integrate threat intelligence feeds
- Investigate phishing and malware
- Investigate suspicious activity
- Monitor security events in SIEM
- Perform incident response
- Tune detection rules and correlation logic
- Update SOC playbooks and workflows
- Validate incidents and determine impact
- Write incident reports and timelines
Perks/Benefits
Skills/Tech-stack
Active Directory | Correlation logic | Cortex XDR | Cortex XSIAM | Dashboard Reporting | Detection rule tuning | EDR | Firewalls | Incident Response | Incident investigation | Intrusion Detection | Intrusion Detection System | Intrusion Prevention | Intrusion Prevention System | Linux | Mitre Attack | Network Administration | Network design | Palo Alto | Palo Alto Cortex | Palo Alto Cortex XDR | Palo Alto Cortex XSIAM | Playbook Development | Rule tuning | SIEM | Security incident | Security incident response | Threat Intelligence | Threat hunting | VPN
Education
Roles
Regions
Countries
States
Cities
Related jobs
-
API Security | Access Management | Backup and replication | Business Impact Analysis | Business impactMid-level Full TimeWashington D.C., District of Columbia, United …5h ago
-
Security Engineer, Cloud Threat and Abuse Detection USD 147K-211KC++ | Computer Security | Design review | Detection Systems | Host ForensicsMid-level Full TimeSunnyvale, CA, USA6h ago
-
Security Analyst III USD 99K-184KApplication Architecture | Case management | Client-Server | Cloud Security | Digital forensicsSenior-level Full TimePlainsboro, NJ, US8h ago
-
Entry-level ContractNew York, NY12h ago
-
Information Systems Security Officer (SSO) USD 107K-166KAssessment and Authorization | Change Management | Continuous Monitoring | FISMA | Incident Response401k match | Discretionary time off | Group term life insurance | Long-term disability | Medical, dental, and vision insuranceMid-level Full TimeBluemont, VA13h ago
-
Manager of Rapid Deployment USD 149K-220KCustomer Onboarding | Deployment pipeline | Deployment playbook | Google SecOps | Microsoft SentinelMid-level Full TimeKansas City, MO SOC15h ago
-
Forward Deployed Engineer USD 150K-230KAI | Automation | Cloud Security | Data Engineering | Data PipelinesGrowth opportunities | Health benefits | Professional developmentMid-level Full TimeKansas City, MO SOC15h ago
-
Forward Deployed Data Architect USD 160K-225KAPI Integration | AWS | Cloud Functions | Content architecture | Detection engineeringSenior-level Full TimeKansas City, MO SOC16h ago
-
Forward Deployed Security Engineer USD 150K-220KAI Security | CMMC | Cloud Security | Endpoint Security | ISO 27001Mid-level Full TimeKansas City, MO SOC16h ago
-
Senior Software Engineer, Security Engineering USD 150K-200KAWS | Applied cryptography | Authentication | Authorization | C++Senior-level Full TimeHouston, TX or San Francisco Bay …16h ago
-
Automation | Bash | CIS Benchmarks | CrowdStrike | DNSSenior-level Full TimeScottsdale, United States17h ago
-
Alert triage | Cloud Security | Data Security | EDR | Entra IDMid-level Full TimeOff Site, United States17h ago
-
Bitcoin Security Director USD 140K-217KBitcoin Protocol | Blockchain Security | Consensus Mechanisms | Cryptography | Custody DesignExecutive-level Full TimeTysons Corner, VIRGINIA, United States18h ago
-
Cybersecurity Engineer USD 100K-193K800-53 | AWS | Access Control | Access Management | AzureFederal holidays off | Flexible PTO | Health coverage | Professional development support | Tuition reimbursementMid-level Full TimeWashington, D.C. Metro18h ago
-
Security Engineering Lead USD 200K-300KAI Security | AWS | Access Management | Azure | Cloud SecuritySenior-level Full TimeNew York, NY, United States19h ago
-
Cyber Forensic Specialist USD 69K-153KAWK | Active Directory | Anti-virus | Autopsy | Chain of CustodyMid-level Full TimeArlington, VA20h ago
-
Security Engineer IC-02 USD 40K-238KAWS | Azure | C# | Cloud Security | CloudFormation401k plan | Company bonus | Equity | Medical, dental, vision benefits | Remote workMid-level Full TimeSeattle, WA20h ago
-
Senior Infrastructure Security Engineer USD 170K-220KAccess Management | Admission control | Architecture Reviews | CI/CD | Cause analysisFlexible time tracking policy | Low bureaucracy culture | Ownership and autonomy | Remote-first workSenior-level Full TimeUnited States R20h ago
-
Manager, Information Security, CX USD 112K-150K800-53 | AWS | Audit evidence | CIS Benchmarks | Cloud SecurityMid-level Full TimeUSA - Sandy, UT21h ago
-
Information Security - Sr. Security Analyst - 40hrs USD 100K-134KActive Directory | Change Control | Database security | Event management | Identity ManagementDisaster preparedness and business continuity exercises | On-call rotationSenior-level Full TimeHartford, CT, United States21h ago
-
Senior-level Full TimeMcLean, VA21h ago
-
API Integration | Artificial Intelligence | Asset Inventory | Bash | CIS-18401k matching | Dental insurance | Medical insurance | Paid time off | Vision insuranceMid-level Full TimeAustin, TX, United States22h ago
-
Senior Web Application Penetration Tester USD 100K-150KAPI Security | Active Directory | Active Directory Security | Application Security | Attack Path401k employer contribution | Dental & vision coverage | Disability insurance | Flexible PTO | Flexible remote workSenior-level Full TimeAnnapolis, Maryland22h ago
-
Sr. Cybersecurity Engineer II (6625) USD 174K-202K800-53 | Acunetix | Cloud Security | Cloud compute | Container Security401k match | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangements | Health, dental, and vision insuranceMid-level Full TimeWashington, DC22h ago
-
800-53 | Access Management | Access Review | Change Management | Configuration ManagementMid-level Full TimeFort Meade, Maryland23h ago