Security Analyst
Listed on 2026-07-06
-
IT/Tech
Cybersecurity, Information Security, Network Security, Security Management & Operations
Overview
Neptune Technology Group Inc. is a technology company serving water utilities across North America. Since 1892, we have continually focused on the evolving needs of water utilities – revenue optimization, operational efficiencies, and improved customer service. With our portfolio of smart water meters, data collection systems and software, we make data actionable for our customers – so they can remain focused on the business of water.
PositionSecurity Analyst within Neptune's Security Operations Center (SOC). You will be responsible for monitoring, investigating, and responding to cybersecurity threats across Neptune's enterprise environment. You will investigate escalated alerts and detections, support incident response activities, coordinate with IT Operations and Engineering teams, and assist with the administration, configuration, and tuning of security tools.
The Security Analyst plays a critical role in protecting Neptune's systems, users, data, and business operations by identifying, containing, and mitigating cyber threats while supporting the continuous improvement of Neptune's security monitoring and response capabilities.
Responsibilities- Security Monitoring & Threat Detection:
Monitor security events, alerts, and detections across Neptune's security platforms. - Investigation & Response:
Investigate escalated alerts and suspicious activity identified through security monitoring; perform initial triage and analysis of security incidents. - Analysis & Forensics:
Analyze security events to determine legitimacy, impact, and required response actions; collect and analyze forensic artifacts, logs, and endpoint telemetry during investigations. - Threat Hunting:
Perform threat hunting activities to proactively identify potential security risks. - Incident Response:
Participate in cybersecurity incident response activities, including investigation, containment, eradication, and recovery; document findings and lessons learned. - Escalation &
Collaboration:
Escalate incidents appropriately based on severity and impact; collaborate with IT Operations, Infrastructure, Engineering, and Application teams during investigations and remediation activities. - Security Governance:
Support root cause analysis and post-incident reviews; assist with security reviews of systems, applications, and infrastructure. - Documentation & Reporting:
Document findings, response actions, and metrics; assist with dashboard creation, reporting, and security metrics development.
- Minimum Qualifications:
Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience); 2+ years of experience in cybersecurity, security operations, IT operations, or related technical field. - Technical Knowledge:
Experience investigating security alerts, detections, and incidents; understanding of malware, phishing, identity attacks, vulnerabilities, and network security; familiarity with SIEM, EDR, and security monitoring platforms; strong analytical and problem-solving skills; excellent written and verbal communication skills; ability to work independently and collaboratively within a team.
- 3+ years of Security Operations Center (SOC) experience; experience with Crowd Strike Falcon, Google Sec Ops, Microsoft Defender, or similar platforms; incident response and digital forensics investigations; vulnerability management programs; familiarity with MITRE ATT&CK framework; knowledge of cloud security technologies and environments; understanding of NIST Cybersecurity Framework and CIS Controls; scripting or automation experience (Power Shell, Python).
- Certifications:
Certifications such as Security+, CySA+, GSEC, CISSP (Associate or Full), SC-200/SC-900, Crowd Strike certifications or equivalent are valued. - Experience &
Education:
2–5 years in Information Technology, Cybersecurity, Security Operations, Compliance, or Incident Response;
Bachelor's Degree in a related field preferred; equivalent military, technical, or professional experience may be considered.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).