Security Operations Analyst Job Description
Security Operations Analyst Duties & Responsibilities
To write an effective security operations analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included security operations analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Operations Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Operations Analyst
List any licenses or certifications required by the position: SANS, CISA, CISSP, CISM, IA, GIAC, SSL, DHCP, DNS, SSCP
Education for Security Operations Analyst
Typically a job would require a certain level of education.
Employers hiring for the security operations analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Associate Degree in Computer Science, Information Technology, Education, Technical, Information Security, Engineering, Computer Engineering, Information Systems, Cyber Security, Computer
Skills for Security Operations Analyst
Desired skills for security operations analyst include:
Desired experience for security operations analyst includes:
Security Operations Analyst Examples
Security Operations Analyst Job Description
- Identify, develop and propose enhancements to existing processes and operations
- Track and maintain operational security metrics to enable reporting to senior management
- Perform maintenance and upgrades of existing security technologies
- Collaborate with our Network, Server, DBA and Desktop support teams
- Creating informed reports on daily activates reports on policy guidelines, standards and policies
- Respond to Splunk security alerts
- Escalate positive findings to Operations Security and other groups for RCA or remediation
- Assist in monitoring security alerts for potential events/incidents trending and historical analysis and ensuring all incident reports are complete and written within standard operations Conduct research to maintain and expand knowledge on the latest cybersecurity technologies and standards, the threat landscape
- Help ISVs understand and use the security tools, resources and documentation available
- Ensure that ISVs submit working, fully configured, end-to-end test environments for the security review by testing credentials, researching offerings, looking at packages and code, looking at external apps and reading documentation
- Expert in applying vulnerability management to large scale distributed software platforms
- Expert in analysing log data from security controls and distributed software platforms
- Experience with Linux, apache, tomcat, nginx, mysql and postgresql is a major plus
- Experience with IDS/IPS, SIEMs and other information security tools
- Demonstrates ability to react quickly and decisively in high stress situations
- Ensure project(s) achieve their intended results
Security Operations Analyst Job Description
- Interpret security reports and other documentation included in submissions to determine if security issues are present and reports are complete
- Assist in monitoring security alerts for potential events/incidents trending and historical analysis and ensuring all incident reports are complete and written within standard operations
- Perform system administration support of security infrastructure including SIEM
- Ensure that security solutions are maintained to be up-to-date and provide maximum preventative and detective value
- Performs responsibilities within determined time frames and with a high degree of accuracy
- Handle P1 and P2 incidents under the direction of Shift leads and Specialists
- Create tickets for necessary tasks that need to be executed by external teams
- A Bachelor's Degree or Diploma in a relevant area of study with a preference for Computer Science or Computer Engineering
- Proven system troubleshooting experience in enterprise production IT environments
- Experience with enterprise server hardware
- Ability to analyze results, independently form conclusions, and present findings and recommendations to other investigators, analysts, security operations personnel and all levels of management
- A Bachelor’s Degree in Management Information Systems or Computer Science is preferred or commensurate relevant work experience
- Minimum of 4 years enterprise architect, or similar experience with at least 3 years in the financial services vertical
- Ability to read and understand system data including security event logs, system logs, application logs, and device logs
- Security configuration knowledge
- Proficient knowledge of collection and analysis methods knowledge in multiple tools, utilized for data correlation
Security Operations Analyst Job Description
- Support IT operations by identifying and resolving problems, responding to IT related requests, maintaining systems integrity and security
- Assist new and ongoing projects, advise/ support on architectures, security, and mitigating controls
- Support internal and third party security assessments and audits, develop mitigation plans, and work with internal stakeholders to assign responsibility
- Support the identification, implementation, and maintenance of security controls required by PCI, ISO 27001, and other regulatory compliance frameworks in a collaborative manner that supports Company business and growth objectives
- Assist Company with overall compliance documents/ reports
- Partner with team members and cross functional groups to ensure programs align with compliance requirements
- Support Management in the acquisition of additional security solutions or enhancements to existing security solutions to improve overall Company security
- Support the deployment, integration and initial configuration of all new IT solutions and of any enhancements to existing IT solutions in accordance with vendor-provided documentation and industry-best practices
- Provides support on network security issues and responds in accordance with the Security Incident Management Plan
- Collects data and context necessary to initiate Tier 2 incident responder work
- Analytical skills needed to support case management and provide summary conclusions from fraud alerts, investigations and operations reports
- Consistently achieve Security Department goals
- Experience in Risk Assessment, audit, or IT security remediation
- Experience with MS Win 7 & Ofc 2007+
- Good written and verbal communication skills, including ticket recording, and incident reporting and escalation
- Can learn to become fluent with Splunk searches
Security Operations Analyst Job Description
- Determines if a critical system or data set has been impacted
- Remediation or escalated authority
- Input on SOC operational procedures
- Collate data for monthly dashboard
- The Security & Risk lead’s primary responsibility is to manage and report on the services and engage with management, Cyber-Security, and the service providers to ensure, liaise with relevant parities to ensure all end user assets have the appropriate level of protection against security threats and vulnerabilities
- Work with information security leadership to develop security operational strategies and plans in support of corporate information security policies
- Develop security metrics, operational reports and notification alerts
- Identify alert thresholds and develop response procedures
- Perform daily security checks and review event logs
- Work with technology teams to address issues identified via metrics, reports and alerts
- Can learn the general understanding of security concepts, principles and practices related to server systems, OS, software applications, network, cloud and web
- The World largest business Cloud provider’ portfolio
- Cutting-Edge Technologies
- Highly engaged team
- A people-focused, open and friendly community in a beautiful working environment
- To be able to share your opinion and improvement ideas because we are listening to you
Security Operations Analyst Job Description
- Work with Security and Infrastructure Architects to address issues related to underlying design
- Design security controls in support of the security risk management framework
- Drive new security related operational projects and collaborate on other business and technology projects
- Produce reports for management concerning vulnerabilities and other security exposures, including misuse of information assets and noncompliance
- Play an advisory role in system acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned
- Work with IT and business units to provide an advisory role to achieve security requirements by enforcing security control policies as planned
- Provide 24x7 on call assistance in responding to security incidents
- Monitor compliance reviews and carry out assessments
- Process normal and exception-based security authorization requests
- Actively participates in security threat monitoring, attack methods, and incident response
- 2+ years as a SOC Analyst
- 3+ years InfoSec experience, Security certification a plus
- Proficiency with Splunk/Enterprise Security or comparable tool set and crafting indicators
- Research the vulnerabilities reported by CERT and other security organizations
- Ability to examine malicious software to understand the nature of the threat
- Ability to perform forensics in case of breach