Sr. Cyber Detection Incident Analyst - Security Operations

Requirements

• Conduct expert-level triage and deep-dive analysis of security events using EDR, NDR, identity telemetry, application logs, SIEM analytics, SOAR workflows, and cloud-native security tools.
• Lead incident escalation workflows and collaborate with the Incident Response and other partner teams drive timely containment and resolution of security threats.
• Perform proactive threat hunting across endpoints, networks, identity systems, cloud platforms (Azure, AWS, GCP), and SaaS environments using threat intelligence, behavioral analytics, and TTP/IOC research.
• Correlate telemetry across diverse systems to identify sophisticated attack patterns.
• Apply strong understanding of OS internals, cloud architectures, networking, authentication protocols, and adversary tradecraft to assess risk, determine impact, and drive escalation decisions.
• Integrate threat intelligence (IOCs, behavioral patterns, ATT&CK-aligned TTPs) into detection logic, use cases, and hunt strategies.
• Develop, tune, and maintain high-efficacy detections across SIEM, EDR/XDR, NDR, SOAR, and cloud-native tools.
• Evaluate emerging detection technologies, analytics methods, and research findings to improve visibility, reduce MTTD, and optimize analyst efficiency.
• Act as a technical detection lead by mentoring analysts, reviewing escalations, and driving consistency in detection quality and workflows.

Benefits

• Generous Paid Time Off
• 401k Matching
• Relocation Assistance