Security Operations Analyst Job Description
Security operations analyst
provides situational awareness on the threat landscape and the techniques, tactics and procedures associated with specific threats.
Security Operations Analyst Duties & Responsibilities
To write an effective security operations analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included security operations analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Analyzes a variety of network and host-based security logs (Firewalls, NIDS, HIDS, Syslog)
Administers, monitors and troubleshoots antivirus activities, and email gateway issues
Assists with security-related software and firmware (e.g., endpoint, vulnerability scanners, firewalls, IPS/IDS, DNS, proxy ) to maintain security and service continuity
Assist with the resolution of security-related infrastructure
Participate in security incident response through in-depth, technical (log, forensic, malware, packet, ) analysis
This is a part-time position, Monday - Thursday from 2 pm to 7 pm
Perform security alert detection and analysis capabilities across multiple technologies to ensure that security incidents are identified in a timely manner
Escalate and support potential security incidents in line with appropriate processes
Support communications of potential security incidents via multiple channels
Participate in the response to potential security incidents by identifying and communicating relevant supplementary information
Security Operations Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Operations Analyst
List any licenses or certifications required by the position: SANS, CISA, CISSP, CISM, IA, GIAC, SSL, DHCP, DNS, SSCP
Education for Security Operations Analyst
Typically a job would require a certain level of education.
Employers hiring for the security operations analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Associate Degree in Computer Science, Information Technology, Education, Technical, Information Security, Engineering, Computer Engineering, Information Systems, Cyber Security, Computer
Skills for Security Operations Analyst
Desired skills for security operations analyst include:
Firewalls
TCP/IP
Routers
Techniques
Networking
Antivirus
Windows
HTTP
Associated risks
Latest threat landscape
Desired experience for security operations analyst includes:
Expert in detecting policy violations or security incidents using log management platforms and SIEM
Expert in working with threat prevention and intrusion detection systems
Well rounded host and network security expertise
Ability to script and automate repetitious tasks
Experience with identity management platforms and protocols like SAML and OAuth to REST
Security subject matter knowledge and experience in anti-virus, anti-SPAM, intrusion detection, encryption, and general security policy
Security Operations Analyst Examples
1
Security Operations Analyst Job Description
Job Description Example
Our growing company is looking to fill the role of security operations analyst. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security operations analyst
- Identify, develop and propose enhancements to existing processes and operations
- Track and maintain operational security metrics to enable reporting to senior management
- Perform maintenance and upgrades of existing security technologies
- Collaborate with our Network, Server, DBA and Desktop support teams
- Creating informed reports on daily activates reports on policy guidelines, standards and policies
- Respond to Splunk security alerts
- Escalate positive findings to Operations Security and other groups for RCA or remediation
- Assist in monitoring security alerts for potential events/incidents trending and historical analysis and ensuring all incident reports are complete and written within standard operations Conduct research to maintain and expand knowledge on the latest cybersecurity technologies and standards, the threat landscape
- Help ISVs understand and use the security tools, resources and documentation available
- Ensure that ISVs submit working, fully configured, end-to-end test environments for the security review by testing credentials, researching offerings, looking at packages and code, looking at external apps and reading documentation
Qualifications for security operations analyst
- Expert in applying vulnerability management to large scale distributed software platforms
- Expert in analysing log data from security controls and distributed software platforms
- Experience with Linux, apache, tomcat, nginx, mysql and postgresql is a major plus
- Experience with IDS/IPS, SIEMs and other information security tools
- Demonstrates ability to react quickly and decisively in high stress situations
- Ensure project(s) achieve their intended results
2
Security Operations Analyst Job Description
Job Description Example
Our growing company is looking for a security operations analyst. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security operations analyst
- Interpret security reports and other documentation included in submissions to determine if security issues are present and reports are complete
- Assist in monitoring security alerts for potential events/incidents trending and historical analysis and ensuring all incident reports are complete and written within standard operations
- Perform system administration support of security infrastructure including SIEM
- Ensure that security solutions are maintained to be up-to-date and provide maximum preventative and detective value
- Performs responsibilities within determined time frames and with a high degree of accuracy
- Handle P1 and P2 incidents under the direction of Shift leads and Specialists
- Create tickets for necessary tasks that need to be executed by external teams
- A Bachelor's Degree or Diploma in a relevant area of study with a preference for Computer Science or Computer Engineering
- Proven system troubleshooting experience in enterprise production IT environments
- Experience with enterprise server hardware
Qualifications for security operations analyst
- Ability to analyze results, independently form conclusions, and present findings and recommendations to other investigators, analysts, security operations personnel and all levels of management
- A Bachelor’s Degree in Management Information Systems or Computer Science is preferred or commensurate relevant work experience
- Minimum of 4 years enterprise architect, or similar experience with at least 3 years in the financial services vertical
- Ability to read and understand system data including security event logs, system logs, application logs, and device logs
- Security configuration knowledge
- Proficient knowledge of collection and analysis methods knowledge in multiple tools, utilized for data correlation
3
Security Operations Analyst Job Description
Job Description Example
Our growing company is looking for a security operations analyst. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for security operations analyst
- Support IT operations by identifying and resolving problems, responding to IT related requests, maintaining systems integrity and security
- Assist new and ongoing projects, advise/ support on architectures, security, and mitigating controls
- Support internal and third party security assessments and audits, develop mitigation plans, and work with internal stakeholders to assign responsibility
- Support the identification, implementation, and maintenance of security controls required by PCI, ISO 27001, and other regulatory compliance frameworks in a collaborative manner that supports Company business and growth objectives
- Assist Company with overall compliance documents/ reports
- Partner with team members and cross functional groups to ensure programs align with compliance requirements
- Support Management in the acquisition of additional security solutions or enhancements to existing security solutions to improve overall Company security
- Support the deployment, integration and initial configuration of all new IT solutions and of any enhancements to existing IT solutions in accordance with vendor-provided documentation and industry-best practices
- Provides support on network security issues and responds in accordance with the Security Incident Management Plan
- Collects data and context necessary to initiate Tier 2 incident responder work
Qualifications for security operations analyst
- Analytical skills needed to support case management and provide summary conclusions from fraud alerts, investigations and operations reports
- Consistently achieve Security Department goals
- Experience in Risk Assessment, audit, or IT security remediation
- Experience with MS Win 7 & Ofc 2007+
- Good written and verbal communication skills, including ticket recording, and incident reporting and escalation
- Can learn to become fluent with Splunk searches
4
Security Operations Analyst Job Description
Job Description Example
Our company is growing rapidly and is searching for experienced candidates for the position of security operations analyst. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security operations analyst
- Determines if a critical system or data set has been impacted
- Remediation or escalated authority
- Input on SOC operational procedures
- Collate data for monthly dashboard
- The Security & Risk lead’s primary responsibility is to manage and report on the services and engage with management, Cyber-Security, and the service providers to ensure, liaise with relevant parities to ensure all end user assets have the appropriate level of protection against security threats and vulnerabilities
- Work with information security leadership to develop security operational strategies and plans in support of corporate information security policies
- Develop security metrics, operational reports and notification alerts
- Identify alert thresholds and develop response procedures
- Perform daily security checks and review event logs
- Work with technology teams to address issues identified via metrics, reports and alerts
Qualifications for security operations analyst
- Can learn the general understanding of security concepts, principles and practices related to server systems, OS, software applications, network, cloud and web
- The World largest business Cloud provider’ portfolio
- Cutting-Edge Technologies
- Highly engaged team
- A people-focused, open and friendly community in a beautiful working environment
- To be able to share your opinion and improvement ideas because we are listening to you
5
Security Operations Analyst Job Description
Job Description Example
Our company is looking for a security operations analyst. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for security operations analyst
- Work with Security and Infrastructure Architects to address issues related to underlying design
- Design security controls in support of the security risk management framework
- Drive new security related operational projects and collaborate on other business and technology projects
- Produce reports for management concerning vulnerabilities and other security exposures, including misuse of information assets and noncompliance
- Play an advisory role in system acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned
- Work with IT and business units to provide an advisory role to achieve security requirements by enforcing security control policies as planned
- Provide 24x7 on call assistance in responding to security incidents
- Monitor compliance reviews and carry out assessments
- Process normal and exception-based security authorization requests
- Actively participates in security threat monitoring, attack methods, and incident response
Qualifications for security operations analyst
- 2+ years as a SOC Analyst
- 3+ years InfoSec experience, Security certification a plus
- Proficiency with Splunk/Enterprise Security or comparable tool set and crafting indicators
- Research the vulnerabilities reported by CERT and other security organizations
- Ability to examine malicious software to understand the nature of the threat
- Ability to perform forensics in case of breach