Senior Information Security Analyst

About

Join a forward-thinking organization committed to safeguarding digital assets as a Senior Information Security Analyst specializing in SIEM technologies, based in Virginia Beach, Virginia, US. Our client is looking for a proactive and experienced security professional to enhance their security operations center (SOC) capabilities. This role involves managing, tuning, and optimizing their Security Information and Event Management (SIEM) platform to detect, investigate, and respond to security threats effectively. You will play a critical role in maintaining a robust security posture and protecting sensitive company data.

Key Responsibilities

• Deploying, configuring, and maintaining SIEM solutions (e.g., Splunk, QRadar, ArcSight) to collect and analyze security event data from diverse sources.
• Developing and implementing correlation rules, alerts, and dashboards to identify potential security incidents and anomalies.
• Performing in-depth analysis of security alerts, logs, and network traffic to investigate potential threats and breaches.
• Leading incident response activities, including containment, eradication, and recovery efforts.
• Conducting threat hunting exercises to proactively identify sophisticated threats that may evade automated detection.
• Collaborating with IT teams to ensure log sources are properly integrated and that security best practices are followed.
• Creating and maintaining documentation for SIEM configurations, use cases, and incident response playbooks.
• Staying up-to-date with the latest cybersecurity threats, vulnerabilities, and attack vectors.
• Providing training and mentoring to junior SOC analysts.
• Participating in security awareness initiatives and audits.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field, coupled with at least 5 years of experience in information security operations, with a significant focus on SIEM management and incident response.
• Strong knowledge of SIEM platforms, log analysis techniques, and network protocols is essential.
• Experience with scripting languages (e.g., Python, PowerShell) for automation and data analysis is highly preferred.
• Familiarity with common security frameworks (NIST, ISO 27001) and threat intelligence platforms is beneficial.
• Excellent analytical, problem-solving, and communication skills are required.
• Relevant security certifications such as CISSP, GIAC, or CEH are a plus.

Location

This is an on-site position requiring dedicated focus within the secure environment.