Job Description

Summary

The Senior Security Analyst role is a vital position within our organization's cybersecurity team. This role is responsible for safeguarding our digital assets and ensuring the confidentiality, integrity, and availability of our information systems. The Senior Security Analyst will play a key role in identifying, analyzing, and responding to security incidents, as well as implementing security measures to prevent future incidents. The ideal candidate will possess a strong understanding of security principles, technologies, and best practices, as well as excellent analytical and problem-solving skills. This position requires a proactive and detail-oriented individual who can work independently and as part of a team. The Senior Security Analyst will collaborate with various departments to promote a security-aware culture and ensure compliance with security policies and standards. The successful candidate will have opportunities for professional growth and development and will contribute to the overall success of our organization's security program. Our security team is dedicated to remaining at the forefront of cutting-edge advancements and technologies to ensure maximum protection from modern security threats.

Essential Functions

• Monitor, analyze, and respond to security incidents and alerts from EDR, ITDR, SIEM, and cloud security platforms.
• Configure and manage security solutions, including Zscaler, CrowdStrike, Defender, and Proofpoint.
• Support firewall and network security operations with Palo Alto and Cisco firewalls.
• Lead security investigations, conduct root cause analysis, and document incident response actions.
• Provide threat intelligence and recommend proactive security measures to mitigate risk.
• Implement and maintain cloud security controls in Azure and GCP.
• Optimize Zscaler cloud security solutions for web and network protection.
• Configure email security solutions (Proofpoint) to prevent phishing and email-based attacks.
• Administer MFA solution to enhance authentication security with tools such as Okta and Microsoft Authenticator.
• Ensure Active Directory (AD) and IAM policies align with best practices.
• Support identity governance, access reviews, and privileged access management (PAM).
• Implement data classification policies and enforce data protection controls.
• Conduct security assessments and ensure compliance with industry standards (PCI, NIST, CIS).

Additional Functions

• Maintain and fine-tune security configurations across various security platforms.
• Identify security gaps and recommend security enhancements and process improvements.
• Develop playbooks and automation scripts to enhance security operations efficiency.
• Conduct vulnerability assessments and penetration testing to identify security weaknesses in systems and applications.
• Develop and implement security policies, procedures, and standards to ensure compliance with industry’s best practices and regulatory requirements.
• Investigate security breaches and other security incidents to determine the root cause and implement corrective actions.
• Provide security awareness training to employees to promote a security-conscious culture.
• Stay up-to-date on the latest security threats and vulnerabilities and recommend appropriate security measures.
• Collaborate with other IT teams to ensure that security is integrated into all aspects of the organization's IT infrastructure.
• Participate in security audits and assessments to identify and address security gaps.
• Develop and maintain incident response plans and procedures.
• Evaluate and recommend security technologies and solutions to improve the organization's security posture.

Qualifications

• A bachelor's degree in computer science, information systems, or a related experience.
• 7-10 years of experience in cybersecurity, security operations, or network security.
• Hands-on expertise with:
• Zscaler, CrowdStrike, Microsoft Defender, Sophia
• Proofpoint (Email Security Gateway)
• EDR & ITDR solutions
• Palo Alto & Cisco Firewalls
• Okta, Microsoft Authenticator (MFA), Active Directory (AD), IAM
• Cloud Security (AWS, Azure, or GCP)
• Data classification and protection strategies
• Strong knowledge of threat intelligence, SIEM, vulnerability management, and incident response.
• Experience with security frameworks such as NIST, ISO 27001, CIS Benchmarks.
• CISSP certification is required (additional security certifications are a plus).
• Strong analytical, problem-solving, and communication skills.
• Ability to work independently and collaboratively in a fast-paced environment.
• Excellent communication and interpersonal skills, capable of collaborating effectively with cross-functional teams.

Working Conditions & Physical Demands

• This position requires in person office presence at least 4x a week.

Job Tags

Similar Jobs