Security Operations Analyst
Listed on 2026-07-18
-
IT/Tech
Cybersecurity, Information Security, Security Management & Operations
Overview
The Security Operations Analyst will play a critical role in safeguarding an organization’s IT environment by monitoring, detecting, analyzing, and responding to cybersecurity threats and incidents. This position leverages tools such as Security Information and Event Management (SIEM) systems, Intrusion Detection and Prevention Systems (IDS/IPS), and threat intelligence feeds to proactively identify and assess potential security risks.
The Analyst will be responsible for investigating security alerts, escalating incidents when appropriate, and collaborating with IT and cybersecurity teams to contain and remediate threats. Additionally, the role contributes to the continuous improvement of security operations by maintaining accurate documentation, refining incident response procedures, and supporting compliance with internal policies and external regulatory requirements.
The Security Operations Analyst will be a key contributor to the organization’s enterprise-wide security program, working in close partnership with the Senior Director of Information Security. This role is instrumental in supporting and expanding the company's brand-wide security initiatives through active collaboration with IT, cross‑functional business units, and external partners.
The ideal candidate will possess a strong understanding of security tool administration, monitoring, alerting, and incident response. This position plays a vital role in ensuring adherence to security standards, regulatory compliance, and industry best practices. By proactively identifying risks and contributing to the evolution of security operations, the Security Operations Analyst helps protect the organization’s assets and strengthens its overall security posture.
This is a hybrid role based out of our Hampton, NH office.
Responsibilities- Collaborate closely with the Senior Director of Information Security to support and execute security, risk management, and compliance initiatives across the organization.
- Monitor and manage security systems including Security Information and Event Management (SIEM) platforms, Intrusion Detection/Prevention Systems (IDS/IPS), Endpoint Detection and Response (EDR) tools, and other key security technologies.
- Analyze system logs, alerts, and events to detect abnormal behavior, malicious activity, and policy violations.
- Perform initial triage, classification, and prioritization of security events to ensure timely and effective response.
- Respond to, investigate, and manage security incidents following established procedures and escalating complex cases as necessary.
- Execute incident response plans and maintain detailed documentation, including incident records, timelines, and root cause analyses.
- Conduct post-incident reviews to identify lessons learned and drive continuous improvement.
- Leverage both internal and external threat intelligence sources to stay informed about emerging threats, vulnerabilities, and attack vectors.
- Correlate threat intelligence with internal telemetry to identify potential risks, indicators of compromise (IOCs), or vulnerabilities.
- Assist in the configuration, tuning, and maintenance of SOC technologies, including SIEM, EDR, IDS/IPS, and related tools.
- Collaborate with other security team members to enhance detection logic, refine alerting mechanisms, and reduce false positives.
- Develop and maintain comprehensive documentation, including detection rules, response playbooks, and investigation procedures.
- Generate regular reports detailing key security metrics, incident trends, and threat intelligence insights for technical and executive stakeholders.
- Support cross‑functional investigations and remediation efforts in coordination with IT, Dev Ops, and other business units.
- Communicate security findings and incident updates effectively to both technical and non‑technical audiences.
- Ensure all incident handling and investigative activities align with internal policies and comply with relevant regulatory standards (e.g., GDPR, PCI‑DSS, and data privacy laws).
- Stay current with cybersecurity developments, tools, threat actor tactics, and industry best practices.
- Participate in ongoing training,…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).