Apply on Employer Site

Saab · 4 hours ago

Sr. Information Security Operations Analyst

East Syracuse, NY

Full-time

Onsite

Mid, Senior Level

$90K/yr - $112K/yr

Saab is a leading defense and security company committed to keeping people and society safe. The Sr. Information Security Operations Analyst will be responsible for protecting IT infrastructure by identifying, assessing, and mitigating security risks, while responding to security incidents and ensuring compliance with industry regulations.

AerospaceAutomotiveInformation TechnologyManufacturingNational SecuritySecurity

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Incident Response: Serve as a key member of the incident response team, leading the investigation and containment of security incidents, performing root cause analysis, and developing remediation plans

Microsoft Security Tool Management: Manage and optimize our Microsoft security platforms, including Microsoft Sentinel, Microsoft 365 Defender (Endpoint, Identity, Cloud Apps), and Azure Security Center

Compliance Monitoring: Monitor and report on adherence to security policies, procedures, and controls. Assist with tracking compliance across various security frameworks (e.g., NIST, ISO 27001, CMMC)

Risk Assessment: Conduct information security risk assessments to identify vulnerabilities, assess potential impact, and recommend corrective actions to mitigate risk

Threat Hunting: Proactively hunt for security threats and vulnerabilities by analyzing security events, logs, and network traffic

Security Policy and Procedure Enhancement: Assist in the development, documentation, and continuous improvement of security standards, policies, and incident response playbooks

Security Awareness: Help deliver security awareness training and communicate security best practices to both technical and non-technical stakeholders

Qualification

Microsoft security ecosystemThreat huntingSecurity informationEvent managementScripting automationNetwork security protocolsMentoring junior analystsRisk assessmentAnalytical abilitiesCommunicationCollaborative workAttention to detailProblem-solving

Required

Extensive experience with Microsoft's security ecosystem, including Sentinel, Microsoft 365 Defender suite, and Azure Security Center

Experience with threat hunting and data analysis

Comfortable scripting or automating tasks using Python, PowerShell, Bash etc

Strong understanding of security information and event management (SIEM) tools

Knowledge of network security protocols and technologies (e.g., firewalls, intrusion detection/prevention systems)

Experience leading or mentoring junior analysts or working in cross-functional teams

Must be a U.S. citizen

Candidates will be required to pass a pre-employment drug screen

Preferred

Relevant industry certifications such as Microsoft Certified: Security Operations Analyst Associate (SC-200), CompTIA Security+, GIAC certifications, or CISSP