Senior Information Security Analyst - Threat Detection

Our client, a global leader in technology services, is looking for a skilled Senior Information Security Analyst specializing in Threat Detection to join our fully remote team. This role is crucial for safeguarding our digital assets against evolving cyber threats. You will be instrumental in identifying, analyzing, and responding to security incidents, developing proactive defense strategies, and enhancing our security posture. The ideal candidate possesses a deep understanding of cybersecurity principles, advanced threat landscapes, and possesses hands-on experience with various security tools and technologies.

Responsibilities: Monitor security alerts and events from various sources (SIEM, IDS/IPS, EDR) to detect potential threats. Conduct in-depth analysis of security incidents, including root cause analysis and impact assessment. Develop and refine threat detection rules, signatures, and correlation logic. Investigate suspicious activities and malware, providing detailed technical reports. Respond to security incidents, coordinating containment, eradication, and recovery efforts. Stay abreast of the latest cybersecurity threats, vulnerabilities, and attack vectors. Develop and maintain security documentation, playbooks, and standard operating procedures. Collaborate with IT and development teams to implement security controls and best practices. Participate in security awareness training and promote a security-conscious culture. Contribute to the continuous improvement of our Security Operations Center (SOC) capabilities. Qualifications: Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience. 5+ years of experience in information security, with a focus on threat detection, incident response, or SOC operations. Proficiency with SIEM tools (e.g., Splunk, QRadar, ELK Stack), EDR solutions, and network security monitoring. Strong understanding of TCP/IP, network protocols, and common attack techniques. Experience with malware analysis and reverse engineering is a plus. Knowledge of cloud security concepts (AWS, Azure, GCP) is desirable. Relevant certifications such as CISSP, GSEC, GCIA, or CEH are highly valued. Excellent analytical and problem-solving skills with meticulous attention to detail. Ability to work independently and manage time effectively in a remote environment. Strong written and verbal communication skills for technical reporting and collaboration. This is a fully remote position, offering the flexibility to work from anywhere. Join a dedicated team committed to maintaining the highest standards of information security.