The Information Security Operations Analyst II plays a critical role in both the engineering and analytical aspects of securing the companys systems and data. This position combines hands-on technical work with in-depth analysis, supporting a broad range of responsibilities including threat intelligence, vulnerability management, incident response, and the design, implementation, and tuning of defensive security controls. In this role, you will engage in engineering tasks such as building and optimizing detection mechanisms, automating response processes, and maintaining security infrastructure. Simultaneously, you will apply analytical thinking to investigate security events, assess risk, interpret threat intelligence, and guide tactical decision-making. The Security Operations Analyst II regularly collaborates with IT and business stakeholders to drive measurable cybersecurity improvements and serves as an escalation point for complex incidents and investigations. To remain effective, youll stay informed on the latest cybersecurity trends, tools, and tactics, continuously adapting defenses to meet evolving threats. The target pay rate during the contract period is between $60-70/hr and is based on years of experience.
Duties and Responsibilities
- Continually exhibit and uphold Core Values of Integrity, Accountability, Communication and Teamwork, Innovation and Customer Service
- Continuously monitor security alerts and events from various sources, including network and application services, endpoint and SIEM tools, etc. to identify potential security incidents and anomalies
-Investigate and analyze security incidents to determine their nature, scope, and impact, taking immediate action to contain, mitigate, and remediate security breaches to minimize damage
- Stay informed about emerging cybersecurity threats, vulnerabilities, and attack techniques, using threat intelligence to proactively identify potential threats and vulnerabilities, and take measures to prevent them
- Maintain detailed records of security incidents, their causes, and the actions taken for analysis, reporting, and compliance purposes, generating and submitting reports to management and stakeholders, as necessary
- Manage and maintain security technologies, including SIEM systems, vulnerability management systems, endpoint and network security systems
- Maintain awareness of information security best practices and communicate their applicability within the Information Security Office and IT organization
- Partner with the Security Operations team and management to conduct security assessments to ensure that management, operational, and technical security controls are properly implemented and maintained
- Lead the refinement of security processes, procedures, and policies
- Support business units and staff, communicating applicable policies and standards, as well as escalating to Information Security management when appropriate
- Consult with various areas of the business as an information risk subject matter expert
- Serve as a mentor and trainer for Information Security Operations Analyst I under the direction of management
- Serve as an escalation point by guiding and helping team members with project issues
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
- 5+ years of experience in a security-related role (security operations, vulnerability management, incident response, engineering, etc)
- SIEM/Splunk: Proficient with SIEM tools, specifically splunk. Understanding of its architecture and use for threat intelligence.
- Threat Intelligence: Detection engineering, including attack frameworks and log analysis. Able to build detections in Splunk to trigger alerts. Own and manage threat intelligence processes.
- Familiar with attacker toolsets (such as Kali Linux) for security testing and attack simulation
- Vulnerability remediation experience
- Certifications: Advanced certifications like CISSP, GSEC, CCSP, etc.
- Ability to write python or powershell scripts
- Diverse background - previous experience in infrastructure/ networking/ web development
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.