×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager

Security Operations Analyst; mid Level Strategy & Ops

Job in Austin, Travis County, Texas, 78716, USA
Listing for: jobs.frontdoordefense.com - Jobboard
Full Time position
Listed on 2026-06-21
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below
Position: Security Operations Analyst (mid Level) Strategy & Ops

Security Operations Analyst (mid Level) Build and mature the Sec Ops program by implementing detection and response playbooks for end-to-end security

Location:

Austin

Job Tags:
Strategy & Ops

About

The Role Sec Ops Analyst

Saronic Technologies is a leader in revolutionizing autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations through autonomous and intelligent platforms.

Job Overview

As a Sec Ops Analyst at Saronic, you'll be on the front line of our detection and response operations, triaging and investigating security alerts across endpoint, cloud, identity, network, and SaaS telemetry using our SIEM and XDR platforms. You'll run root cause analysis on real events, lead initial response for mid-tier incidents (contain, eradicate, recover), and tune detections to cut down on noise and sharpen what actually matters.

Beyond the day-to-day, you'll join the on‑call rotation, run targeted threat hunts to catch what automation misses, help build out our playbooks and runbooks, and contribute to post‑incident reviews that turn gaps into real improvements. This is an early, formative role on a Sec Ops team being built from the ground up, so you’ll have a direct hand in shaping how we operate, with room to grow across security domains rather than being boxed into one lane.

Responsibilities

Detection & Alert Operations

  • Monitor and triage security alerts across endpoint, cloud, identity, network, and SaaS telemetry using enterprise SIEM and XDR platforms
  • Perform in-depth alert investigation and root cause analysis, documenting findings with clear, structured timelines and impact assessments
  • Tune detections to reduce false positive noise and improve signal fidelity; contribute to detection-as-code pipelines using structured query languages
  • Operate across multiple detection and visibility platforms as part of a maturing, layered security monitoring ecosystem

Incident Response & Investigation

  • Lead initial incident response for mid-tier events: contain, eradicate, and recover across endpoint, cloud, and identity domains
  • Participate in the on‑call incident rotation and effectively communicate status and findings to the Sec Ops Lead and relevant stakeholders
  • Conduct post‑incident reviews, identifying gaps in detection, response, and containment and translating them into actionable improvements
  • Coordinate with Security Engineering and IT during active incidents to accelerate response and reduce dwell time

Sec Ops Foundation & Enablement

  • Support the Sec Ops Lead in developing and refining response playbooks, runbooks, and analyst workflow documentation
  • Conduct targeted threat hunting operations to identify attacker activity not surfaced by automated detections
  • Contribute to Sec Ops metrics tracking, reporting, and operational readiness reviews
  • Help onboard and mentor junior analysts as the team grows, serving as a technical resource and process guide
Qualifications
  • 3+ years of hands‑on experience in a Security Operations, detection engineering, or incident response role
  • Demonstrated experience triaging and investigating alerts across at least two of the following: endpoint, cloud, identity, network, or SaaS environments
  • Hands‑on proficiency with enterprise SIEM platforms and their query languages; ability to write and iterate on detection logic from scratch
  • Experience with EDR tooling in an operational context; ability to hunt, triage, and respond using endpoint telemetry
  • Solid understanding of attacker TTPs mapped to MITRE ATT&CK, and the ability to apply that knowledge during active investigations
  • Experience writing or iterating on detection logic, response playbooks, or SOC operational documentation
  • Scripting proficiency in Python, Power Shell, or Bash for alert enrichment, automation, or triage support
  • Strong understanding of network fundamentals: TCP/IP, DNS, HTTP/S, firewall and proxy logs, and lateral movement patterns
  • Clear and structured written and verbal communication — you can brief a non-technical stakeholder and write a thorough incident report
  • Ownership mindset: you follow incidents through to closure and flag what needs to be fixed, not just what needs to be documented
  • Security…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search