Senior Security Analyst

Company Description

Overview

Senior Security Analyst

8+ years of experience in cybersecurity operations, consulting, and threat management

leading end-to-end security operations

email and endpoint security initiatives

Key Responsibilities

• Lead and manage end-to-end security operations, including incident response, threat detection, and investigation.
• Proactively triage and analyze security alerts from multiple data sources (SIEM, EDR, network, and email).
• Serve as a subject matter expert (SME) for cybersecurity controls, providing strategic input to strengthen the organization’s security architecture.
• Conduct threat hunting, vulnerability assessments, and risk analysis across enterprise systems, endpoints, and email environments.
• Design and implement automation and monitoring enhancements to improve detection, alerting, and response efficiency.
• Analyze web traffic, firewall, and email security logs to detect and mitigate malicious or abnormal activities.
• Lead email security defense operations, including anti-phishing, malware prevention, email authentication (SPF/DKIM/DMARC), and policy optimization.
• Collaborate with IT, DevOps, and business teams to align cybersecurity controls with organizational goals and ensure secure configurations.
• Own and maintain compliance readiness, preparing documentation and evidence for frameworks such as PCI-DSS, ISO 27001, SOC 2, HIPAA, and GDPR.
• Stay current on emerging threats, attack techniques, and new security technologies, driving continuous improvements in posture and response.
• Mentor and guide junior analysts, fostering a culture of continuous learning and security excellence.
  

Skills And Expertise

• Strong hands-on experience with SIEM platforms for advanced threat detection and log analysis.
• Proven expertise in incident response, digital forensics, and root cause analysis.
• Solid understanding of email security controls, phishing detection, and mail flow security architecture.
• Experience with endpoint protection, DLP, data encryption, and zero-trust principles.
• Skilled in vulnerability management, risk assessment, and remediation planning.
• Ability to analyze and correlate data from network, endpoint, and email systems for comprehensive threat analysis.
• Excellent analytical, problem-solving, and communication skills with the ability to influence across teams.
• Demonstrated success in leading initiatives independently and driving measurable improvements in organizational security posture.
  

Technology Stack (Preferred Experience With Any From Each Category)

• SIEM: Wazuh, Microsoft Sentinel, Splunk, DataDog, Sumo Logic
• Endpoint Protection: Sophos, Bitdefender, Trend Micro, Microsoft Defender for Endpoint
• Email Security: Microsoft Defender for Office 365, Exchange Online Protection, Proofpoint, Opentext/Zix, Mimecast
• Vulnerability Management: Tenable, QualysGuard, Nessus, Rapid7 InsightVM
  

Qualifications

Qualifications

• 8+ years of hands-on experience in cybersecurity, with exposure to email security, threat analysis, and incident response.
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Proven experience in consultant-level or senior analyst roles, independently leading and delivering security improvements.
• In-depth understanding of security governance, risk management, and compliance standards.
• Preferred Certifications:
• CISSP, CISM, or CISA (strongly preferred)
• SC-200 (Microsoft Security Operations Analyst), AZ-500 (Azure Security Technologies)
• CompTIA Security+, CEH, or equivalent
  

Soft Skills

• Highly self-driven with a consultative mindset and initiative-taking attitude.
• Strong collaboration and communication skills across technical and business teams.
• Ability to translate complex technical findings into actionable insights for leadership.
• Continuous learner passionate about improving defenses and adapting to evolving threats.