Associate Analyst on a cross functional team analyzing data provided by customers. Ensuring project schedules are met and supporting internal teams with vendor interactions.
About the role
- Security Operations Engineer II optimizing security operations at Credit Acceptance. Collaborating on threat response and managing security tool configurations with a focus on automation.
Responsibilities
- Operate and tune enterprise security tools (EDR, SIEM/SOAR, WAF/proxy, email security).
- Manage proxy filtering policies, exceptions, SSL inspection, and performance troubleshooting.
- Build automation and playbooks (Python/PowerShell, SOAR, APIs) to streamline SecOps tasks.
- Implement CI/CD pipelines and Infrastructure-as-Code workflows for consistent, auditable security configuration changes.
- Author and tune detection rules; improve signal quality and reduce false positives.
- Maintain and author health dashboards, uptime/coverage metrics, and change governance documentation.
- Conduct knowledge transfers through runbooks, how-to guides, tabletop exercises, and lunch & learn training sessions.
- Maintain upgrade schedules, license compliance, configuration baselines, and key/secret rotations.
- Analyze block events for false positives; measure impact; retire exceptions on schedule and report residual risk.
- Build and maintain an automation backlog in partnership with SecOps, prioritizing high-frequency, high-toil tasks.
- Provide on-call support for tooling availability and ingestion/normalization issues.
- Report on metrics (uptime, coverage, MTTR, lead time, change success rate, exception aging).
Requirements
- Bachelor’s degree in computer science, Information Systems, Data Science or closely related field of study or equivalent experience
- Minimum 2 years of experience in cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), operations incident response, network security or security engineering
- Basic experience administering, deploying and managing security tools.
- Basic experience operating WAF/proxy and SIEM/SOAR.
- Scripting in Python and/or PowerShell and building API integrations; JSON/YAML proficiency.
- CI/CD and Git workflows; Infrastructure-as-Code for security configurations.
- Basic understanding of TLS/SSL, HTTP, identity-aware policies, and egress/ingress routing.
- Documentation discipline and change management (ITIL basics).
- Ability to produce formal and informal reports, briefings, and analysis of security controls.
- Experience with Endpoint Detection and Response (EDR) or Intrusion Detection System or Intrusion Prevention System (IDS/IPS) monitoring tools.
- Understanding of MITRE ATT&CK Framework and Cyber Kill Chain flow
- Understanding of incident response processes and risk management.
Benefits
- Excellent benefits package that includes 401(K) match
- Adoption assistance
- Parental leave
- Tuition reimbursement
- Comprehensive medical/dental/vision
- Many nonstandard benefits that make us a Great Place to Work
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
SOC Analyst providing premium - level support for Cloudflare's security products and features. Engaging with customers and analyzing security threats across multiple platforms.
Head of Security Operations leading diverse teams to secure Flutter global services and developing security strategies. Engaging with stakeholders to enhance operational processes and cloud security controls.
Systems Infrastructure & Network Security Operations Engineer at HP providing secure system management. Collaborating with teams for zero - trust design, automation, and infrastructure resilience.
SOC Analyst securing national interests at BAE Systems. Responsible for security operations and incident response in Canberra, Australia.
Director of Security Operations overseeing incident response tasks at Gartner. Leading a geographically dispersed team and improving capabilities for detecting and responding to threats.
Senior Manager for Product Security Ops & Strategy at Salesforce overseeing strategic initiatives and ensuring alignment with security goals. Driving operational excellence and executive communication across teams.
Principal SOC Engineer shaping cyber defense at The Missing Link. Engaging with clients and mentoring engineers in advanced security technologies.
Security Operations Manager responsible for planning and managing security programs at Cox Enterprises. Collaborating with stakeholders and analyzing security vulnerabilities while conducting investigations.
Security Operations Centre Analyst for Paysafe, responding to real - time security alerts and assisting Incident Response in security events. Requires collaboration in a global team environment with various security frameworks.