Brief Description
Position Overview
Zywave is seeking a skilled Security Analyst to serve as a key member of our growing Security Operations Center. In this key role, you will be responsible for continuous monitoring, detection, analysis, and response to cybersecurity threats across the enterprise. This role plays a critical part in safeguarding the organization's information assets by identifying suspicious activity, investigating security events, and working with Senior members of the Security team leveraging industry-leading tools, threat intelligence, and established procedures to rapidly contain and mitigate risks.
Key Responsibilities
- Monitor, triage, and analyze security events across SIEM platforms as part of the Security Operations Center (SOC).
- Perform triage, investigation, and containment of security incidents.
- Utilize endpoint and cloud EDR tools for advanced threat detection and response.
- Create and run KQL queries within Microsoft Sentinel to support investigations and detections.
- Monitor Microsoft, AWS security configurations, identity events, and cloud posture.
Qualifications
- 2+ years of experience in a Security Operations Center or cybersecurity analyst role.
- Hands-on experience with Microsoft SIEM platforms
- Strong working knowledge of Microsoft 365 security and administration.
- Experience with Azure identity and cloud security controls.
- Advanced knowledge of Microsoft Defender (Endpoint, Cloud, Identity).
- Understanding of networking, common attack techniques, and incident response.
- Threat hunting or forensic investigation experience a Plus.
