×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager Network Security

Sec Ops Analyst II

Remote / Online - Candidates ideally in
Fargo, Cass County, North Dakota, 58126, USA
Listing for: Noridian
Remote/Work from Home position
Listed on 2026-02-19
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager, Network Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

* Position is Eligible for Remote / Work from Home Opportunity
* Department:
Systems Security Telecommuting Eligible:
Yes Job Grade: E11

As a condition of employment physical work location must be in one of the 50 states or the District of Columbia.

Notice of Collection & Privacy Policy for Applicants Residing in California:
California Applicant Privacy Policy | Noridian ()

Job Title

Security Operations Analyst II

Job Summary

Security Operations Analysts are responsible for monitoring, detecting, and responding to cybersecurity threats and incidents across the enterprise. They perform threat analysis, incident response, and proactive threat hunting while ensuring compliance with Centers for Medicare & Medicaid Services (CMS) Acceptable Risk Safeguards (ARS)5.1, National Institute of Standards and Technology (NIST)800-53, and Federal Information Systems Management Act (FISMA) standards. The team works to continuously improve security processes, tools, and automation, with a focus on advanced monitoring, containment and remediation activities.

Essential

Functions (Key Duties/Responsibilities/Accountabilities)
  • Performs initial triage and investigation of alerts generated by System Information and Event Management (SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), and other monitoring tools using critical thinking, problem-solving, and the MITRE ATT&CK framework.
  • Monitors network, host, and application alerts for indicators of compromise or policy violations.
  • Vulnerability intake and classification. Manages the intake and classification of security vulnerabilities.
  • Researches and classifies software patch updates.
  • Creates and updates incident tickets in accordance with defined SLAs and escalation procedures.
  • Participates in continuous monitoring operations, including log correlation and alert tuning.
  • Maintains detailed documentation of all alerts, investigations, and response activities.
  • Supports daily and weekly reporting of security operations metrics and trends.
  • Adheres to established playbooks and incident handling procedures.
  • Maintains basic knowledge of cyber threat landscapes and emerging attack vectors.
  • As assigned, provides after-hours support by responding to and assisting with incidents as part of an on-call or escalation rotation.
  • Conducts advanced analysis and correlation of events across multiple data sources (endpoint, network, identity, and cloud).
  • Performs threat hunting activities leveraging MITRE ATT&CK and other intelligence frameworks.
  • Leads containment and eradication steps for medium‑severity incidents.
  • Coordinates with IT and Security Engineering for incident response, remediation, and lessons learned.
  • Develops and refines security operations use cases and detection rules to reduce false positives and improve alert quality.
  • Maintains and improves security operations playbooks, runbooks, and standard operating procedures.
  • Conducts quality review of Analyst I investigations and provides coaching and feedback.
  • Contributes to weekly threat reports, metrics, and situational awareness briefings.
  • Participates in vulnerability management reviews and validation scans.
  • Collaborates with the Governance, Review and Compliance (GRC) team to support compliance evidence collection related to continuous monitoring controls.
Non‑Essential Duties and Functions
  • Other duties as assigned.
Minimum Qualifications
  • Bachelors degree in Information Technology, Cybersecurity, or related field OR equivalent work experience determined by Human Resources.
  • 3 years of experience in security operations, threat detection, or incident response.
  • Hands‑on experience with EDR, SIEM, Intrusion Detection System/Intrusion Prevention System, and SOAR platforms.
  • Understanding of incident lifecycle (detect, analyze, contain, eradicate, recover) and NIST 800‑53
  • Proficiency in interrupting network packets, logs, and endpoint telemetry.
  • Working knowledge of MITRE ATT&CK and its application to detection logic, automation, and threat modeling.
  • Strong attention to detail, communication, and documentation skills.
  • Strong analytical and critical‑thinking skills with ability to prioritize under pressure.
Preferred Qualifications
  • CompTIA…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search