Security Operations Analyst (Remote - USA East)
Commvault · United States · 1 wk ago
RemoteRemoteInformation Technology$54k–$121k/yrFull-time
About the role
The Security Operations Analyst will work closely with teams including Security Engineering, Threat and Vulnerability Management, Networking, Infrastructure, Identity, and IT Operations.
Responsibilities
- Investigate security alerts using tools such as CrowdStrike Falcon Suite, Microsoft Sentinel, endpoint telemetry, identity logs, network data, and cloud security sources.
- Perform alert triage and analysis to determine the scope, severity, and potential impact of security events.
- Support incident response activities, including investigation, containment, remediation, recovery, and post-incident documentation.
- Write clear incident reports, investigation summaries, timelines, findings, and recommended improvements.
- Support selected SOC projects focused on improving detection quality, workflows, playbooks, reporting, automation, and response readiness.
- Participate in regular security operations reviews and collaborate with cross-functional teams, including Security Engineering, Threat and Vulnerability Management, Networking, Infrastructure, Identity, and IT Operations.
Requirements
- 2-4 years of cybersecurity experience, including hands-on SOC experience.
- Experience investigating security alerts, performing triage, documenting findings, and supporting incident response.
- Hands-on experience with CrowdStrike Falcon Suite.
- Experience with Microsoft Sentinel or similar SIEM technology.
- Experience supporting hybrid Active Directory and Microsoft Entra ID environments.
- Understanding of common attack techniques, including phishing, credential compromise, malware execution, lateral movement, privilege escalation, and data exfiltration.
- Ability to analyze endpoint, identity, network, cloud, and SIEM telemetry to determine scope, severity, and business impact.
- Strong written and verbal communication skills, including the ability to brief technical findings and drive follow-up across teams.
Qualifications
- Bachelor’s degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field.
- Experience with threat hunting, detection engineering, malware analysis, or digital forensics.
- Familiarity with KQL, PowerShell, Python, MITRE ATT&CK, or incident response frameworks.
- Experience improving SOC processes, playbooks, metrics, or detection and response workflows.
Skills
- Hands-on experience with CrowdStrike Falcon Suite.
- Experience with Microsoft Sentinel or similar SIEM technology.
- Experience supporting hybrid Active Directory and Microsoft Entra ID environments.
- Understanding of common attack techniques, including phishing, credential compromise, malware execution, lateral movement, privilege escalation, and data exfiltration.
- Ability to analyze endpoint, identity, network, cloud, and SIEM telemetry to determine scope, severity, and business impact.
- Strong written and verbal communication skills, including the ability to brief technical findings and drive follow-up across teams.
Benefits
Continuous professional development and training
Clear career growth and advancement opportunities
Inclusive company culture
Comprehensive benefits package
Pay
$54,400 - $120,750 USD
Schedule
Remote - USA East