Information Security Analyst

We have a client Technical Security Analyst to support day-to-day security operations across its hybrid IT environment. This hands-on role focuses on monitoring, alert triage, endpoint protection, and incident investigation using industry-standard tools. The ideal candidate brings 3–5 years of technical security experience, a sharp eye for anomalies, and the ability to respond quickly and thoroughly to threats.

You’ll be working within an established environment that includes Microsoft Sentinel, Defender Suite, Arctic Wolf, Tenable, Cisco, and Palo Alto. Cloud security knowledge is considered a bonus.

Key Responsibilities:

• Monitor security alerts via Microsoft Sentinel and external SOC (Arctic Wolf) feeds
• Triage, investigate, and respond to threats across endpoints, network, and cloud environments
• Perform in-depth analysis of logs, firewall events, and endpoint protection data
• Assist in managing and tuning tools like Microsoft Defender for Endpoint and Defender for Identity
• Collaborate with vulnerability management efforts using Tenable
• Support investigations involving Palo Alto firewalls and Cisco networking equipment
• Contribute to incident response playbooks and documentation
• Identify opportunities to reduce noise, improve alert fidelity, and strengthen defenses

Tech Stack & Tools You’ll Be Working With:

• SIEM & Monitoring: Microsoft Sentinel, Arctic Wolf
• Endpoint & Threat Protection: Microsoft Defender Suite (Endpoint, Identity, Office 365)
• Vulnerability Management: Tenable
• Firewalls & Network Security: Palo Alto (some gaps in internal knowledge), Cisco
• User Awareness Tools: KnowBe4
• Cloud Security (Bonus): Azure Security Center, Defender for Cloud

Qualifications:

• 3–5 years in a hands-on security analyst or SOC role
• Strong understanding of endpoint protection, SIEM monitoring, and threat analysis
• Experience working with at least one or more of the following: Sentinel, Defender, Tenable, Palo Alto, Cisco
• Strong attention to detail and problem-solving skills
• Familiarity with cloud environments (Azure) is an asset
• Security certifications (e.g., Security+, CEH, GSEC) are a plus