Security Operations Analyst

Our client, a major bank in New York City and Central, NJ, is looking for Security Operations Analyst. Hybrid commute, 2 days on-site in New York City or Central NJ Locations and 3 days per week remote This is a permanent FT career opportunity, with base salary range 110 -135K DOE, plus around 20% bonus and great benefits package Security Operations Analyst In this role you will be a leading member of security operations staff. You will work closely with other members of the Security Operations and Security teams to actively prioritize day to day operational activities, identify and respond to security risks and incidents, recommend and implement solutions, work with affected departments to address the risk, and ensure that the remedy remains in effect. The ideal candidate is experienced in Cyber Defense, response automation, leading as Incident Commander, SOC environment and ability to combine hands-on experience with an understanding of theory and practice. You should have the ability to own, refine, and participate in the end-to-end IR lifecycle to ensure consistency and adherence across the company and subsidiaries. Will be involved with monitoring and oversight of security consultants and other supporting third parties. The responsibilities will include operational aspects of monitoring and remediating security events, including working with vendors and other IT departments to address the event and escalating to senior members of the team as necessary. Key Responsibilities : Operational : Perform day to day administration and support of security infrastructure tools and systems, including but not limited to SIEM, IDS / IPS, EDR, SNOW, Email Protection, and other Network or System Monitoring tools Manage relationships with SOC, MSSP, and other security vendors Recommend and implement enhancements to existing processes, focusing on automation and integration between other security solutions. Review security logs of critical systems to identify risks, security threats, or configuration errors Review daily, weekly, and monthly security reports for any anomalies or issues Provide first level support on security issues and guidelines from end-users, developers, desktop-support specialists and system administrators Troubleshoot security issues and assist with security incident responses and forensic investigations Prepare Incident Response documentation, IR Playbooks, KRI\KPIs, clearly communicate technical details for Senior Management Lead and contribute to detection and response capabilities, focusing on creating high fidelity alerts and developing tuning adjustments for repeated events Perform forensic activities along with malware analysis of suspicious files during major cyber incidents Hands on experience with SIEM / SOAR platform, playbook creation and detection models to reduce alert fatigue and improve detection accuracy Project based work : Implement well engineered solutions to improve security posture Work with colleagues and vendors to assess different technologies and determine their impact within the bank environment Provide technical support to design, develop, engineer and implement Cybersecurity requirements for new and existing hardware, networks, and applications Prepare formal and informal reports with security requirements on security incidents, system vulnerabilities, and ongoing compliance functions Develop and lead Incident Response initiatives to mature existing or future Cybersecurity services to reduce the threat landscape across the bank Qualifications : 3-5+ years of proven cybersecurity experience in a similar position Strong communication skills. Ability to clearly and concisely articulate ideas, solutions, etc. Strong educational background with BS / MS in Computer Science, Engineering, or related area Experience with scripting (PowerShell or Python preferred) Deep understating of log analysis and correlation across large data sets Take an automation-first approach to mature cyber hygiene Good analytical and problem solving skills to troubleshoot and resolve security issues Developing complex SPL and EDR alerts to improve detection abilities Knowledge of Proxies, Web Servers, Cloud, IDS / IPS and Packet Captures Understanding of TCP / IP, Routing, Switching, Firewalls, and other Network functionality Knowledge of Linux, Windows, and Virtualization security Self-driven to learn and develop skills Please email your resume or use this link to apply directly : https : / / brainsworkgroup.catsone.com / careers / index.php?m=portal&a=details&jobOrderID=16695663 Or email : igork@brainsworkgroup.com Check ALL our Jobs : http : / / brainsworkgroup.catsone.com / careers Keywords : Cyber security script powershell python SPL EDR Proxies web services cloud IDS / IPS TSP / IP Routing Switch Firewall Network