IT Security Operations Analyst

We are seeking an experienced IT Security Operations Analyst to support and enhance our organization’s cybersecurity posture. The successful candidate will play a vital role in threat detection, incident response, vulnerability management, and ensuring compliance across our infrastructure. This is a hands-on position that requires strong technical skills, analytical thinking, and a proactive approach to security operations.

Key Responsibilities:

• Monitoring & Incident Response:
  Continuously monitor cybersecurity tools (including SIEM platforms) to detect and investigate threats. Conduct in-depth analysis of alerts and log data to identify malicious activity, determine impact, and initiate appropriate containment and remediation actions.
• Incident Management & Reporting:
  Generate detailed incident reports, maintain records of security events, and deliver regular updates on trends and response metrics. Provide recommendations to improve overall threat posture based on incident analysis.
• Threat Intelligence & Analysis:
  Track current cybersecurity threats, vulnerabilities, and evolving tactics. Evaluate the relevance of external threat intelligence and its potential impact on the organization’s systems and cloud infrastructure.
• Vulnerability Assessments:
  Perform vulnerability scans and penetration tests. Collaborate with infrastructure and application teams to address and remediate findings, ensuring timely patching and mitigation.
• Operational Playbooks & SOPs:
  Develop and refine documentation including incident response procedures, operational workflows, and security playbooks to standardize and improve incident handling and readiness.
• Security Tool Management:
  Administer a range of security tools (e.g., endpoint protection, IAM systems, SIEM, XDR). Maintain integration health, optimize configurations, and enhance detection capabilities through custom queries and rules.
• Compliance & Security Governance:
  Support policy development and configuration compliance checks. Ensure adherence to internal standards and industry frameworks (e.g., ISO, NIST).

Technical Skills:

• Proficient in managing extended detection and response (XDR), threat intelligence, and vulnerability management tools.
• Strong hands-on expertise with Microsoft security technologies (e.g., Defender for Endpoint, Defender for Cloud, Sentinel, Intune).
• Experience writing detection rules and use cases using SIEM query languages.
• Solid understanding of hybrid cloud environments and enterprise network infrastructure.
• Background in IT operations, enterprise compliance, and security best practices.

Soft Skills:

• A strong collaborator who thrives in team-based environments.
• Customer-focused with a proactive and solution-oriented mindset.
• Effective communicator with a friendly, empathetic approach.
• Agile and open to change, with a high degree of personal accountability.
• Demonstrates integrity and ownership in all tasks.

Qualifications:

• Bachelor’s degree in computer science, engineering, or related technical discipline.
• 3-5 years of professional experience in cybersecurity operations or related roles.
• High attention to detail and structured problem-solving capabilities.
• Fluent in English with excellent written and verbal communication.
• Knowledge of industry trends, security innovation, and emerging technologies.
• Microsoft SC-200 certification or equivalent is a plus.
• Self-motivated with a passion for continuous learning.

Salt is acting as an Employment Agency in relation to this vacancy.