Security Operations Analyst 3 (Senior)

Mission Objectives

The Security Operations Analyst 3 (Senior) supports the NIGC's cybersecurity mission as the dedicated senior-level security analyst focused on incident response, daily security analysis, continuous monitoring, and threat intelligence. Working with minimal supervision and guidance, this position ensures real-time security awareness and contributes directly to maintaining the integrity of the NIGC's hybrid IT environment – protecting on-premises Cisco infrastructure, VMware servers, and Microsoft Azure/M365 cloud environments serving fewer than 150 users across the organization.

Position Responsibilities:

• Perform all security analysis activities according to established standards
• Maintain threat awareness and monitor NIGC information systems for exploits and suspicious activities; analyze aggregated logs and reports from security tools
• Develop a daily security analysis and reporting checklist and execute all activities identified in the checklist
• Evaluate effectiveness of security analysis activities compared to best practices and recommend improvements
• Adhere to Continuous Monitoring practices to evaluate the effectiveness of implemented security controls and execute proactive threat hunting activities to ensure confidentiality, integrity, and availability of NIGC information systems
• Develop detection and response configuration policies to increase automation and alerting
• Develop incident handling procedures
• Execute Incident Response activities to include all associated actions according to the NIGC incident response plan
• Validate that sufficient and relevant information is captured and retained from security tools to support actionable security awareness and incident investigations
• Collect security operations performance and NIGC security posture management metrics; prepare NIGC threat reports to inform risk management decisions