Government Careers
  • Sr. Security Operations Analyst

  • Warner Bros
  • Atlanta, Georgia 30318 United States View Map

Senior Cybersecurity Analyst CSOC

The Senior Cybersecurity Analyst CSOC is a Senior level non-management role that reports directly to the CSOC Manager. They will be responsible for guiding a hybrid team of security analysts tasked to detect, triage, analyze, respond, and report cybersecurity incidents in addition to performing advanced analysis and assisting with incident response. A successful candidate will be able to use experience, knowledge, and critical thinking to perform CSOC duties that deviate from daily norms with minimal guidance and mentor more junior analysts on the solution. As a Senior Analyst, this individual must be highly organized, detail oriented, and able to manage multiple investigations, projects, and deliverables at once.

Role & Responsibilities:

Security Operations:

  • In-depth security event analysis
  • Facilitating and overseeing the execution of day-to-day directions given by CSOC Manager
  • Enhancing detection and alert maturity
  • Enhancing technical and administrative processes and procedures
  • Providing blue team subject matter expertise to advise CSOC Leadership and mentor Analysts
  • Documenting and communicating findings and after-action reports to the entire security team
  • Reviewing investigations and performing QA/QC
  • Driving alert logic refinement through tuning and whitelisting
  • Training and mentoring Associate and Mid-level Analysts
  • Performing Tier 3 On Call rotations to include weekends or nights

Support IR Investigations:

  • Incident coordination by assignment of work streams and creation of reports
  • Serving as the technical escalation point for the CSOC team
  • Providing ad-hoc training to team members

Project Work:

  • Performing CSOC maturity projects under the guidance of Cyber Operations Leadership
  • Partnering with Security Engineering teams to enhance features and capabilities within current security tooling
  • Creating and updating written policies and procedures

Qualifications & Experiences:

  • 5-7 years of relevant experience or equivalent demonstrable knowledge & skill set
  • Ability to think critically to solve problems with minimal guidance
  • Ability to perform comprehensive incident, root cause analysis and write technical reports
  • The ability to conduct investigations on multiple operating systems such as Linux, iOS, and Windows
  • Experience performing manual log analysis from a variety of host-based and network-based sources
  • The ability to conduct security investigations without the assistance of pre-extracted data or pre-established queries across multiple platforms such as Splunk, OS CLI/Terminal, Sentinel One, etc.
  • Experience using modern CSOC/Fusion Center enterprise security suite
  • Familiarity with Digital Forensics and Incident Response (DFIR) concepts
  • Experience participating in CIRT/CSIRT investigations
  • Knowledge of exploits, vulnerabilities, malware families and common attack vectors
  • Scripting (Python, PowerShell, bash), regex experience is a plus
  • Experience with firewalls, intrusion detection/prevention systems
  • Effective in collaborating with teams in remote offices and multiple cultures across the globe
  • Intermediate or higher Security Certifications are a plus - CYSA+, CISSP, CFR, CHFI, GCIH, GCFA, or GNFA, PenTest+, OSCP, etc.
  • Ability to tailor complicated Security and Technical information to the comprehension levels of intended audiences, whether that be non-technical Senior Executives or highly technical Subject Matter Experts

Senior Cybersecurity Analyst CSOC

The Senior Cybersecurity Analyst CSOC is a Senior level non-management role that reports directly to the CSOC Manager. They will be responsible for guiding a hybrid team of security analysts tasked to detect, triage, analyze, respond, and report cybersecurity incidents in addition to performing advanced analysis and assisting with incident response. A successful candidate will be able to use experience, knowledge, and critical thinking to perform CSOC duties that deviate from daily norms with minimal guidance and mentor more junior analysts on the solution. As a Senior Analyst, this individual must be highly organized, detail oriented, and able to manage multiple investigations, projects, and deliverables at once.

Role & Responsibilities:

Security Operations:

  • In-depth security event analysis
  • Facilitating and overseeing the execution of day-to-day directions given by CSOC Manager
  • Enhancing detection and alert maturity
  • Enhancing technical and administrative processes and procedures
  • Providing blue team subject matter expertise to advise CSOC Leadership and mentor Analysts
  • Documenting and communicating findings and after-action reports to the entire security team
  • Reviewing investigations and performing QA/QC
  • Driving alert logic refinement through tuning and whitelisting
  • Training and mentoring Associate and Mid-level Analysts
  • Performing Tier 3 On Call rotations to include weekends or nights

Support IR Investigations:

  • Incident coordination by assignment of work streams and creation of reports
  • Serving as the technical escalation point for the CSOC team
  • Providing ad-hoc training to team members

Project Work:

  • Performing CSOC maturity projects under the guidance of Cyber Operations Leadership
  • Partnering with Security Engineering teams to enhance features and capabilities within current security tooling
  • Creating and updating written policies and procedures

Qualifications & Experiences:

  • 5-7 years of relevant experience or equivalent demonstrable knowledge & skill set
  • Ability to think critically to solve problems with minimal guidance
  • Ability to perform comprehensive incident, root cause analysis and write technical reports
  • The ability to conduct investigations on multiple operating systems such as Linux, iOS, and Windows
  • Experience performing manual log analysis from a variety of host-based and network-based sources
  • The ability to conduct security investigations without the assistance of pre-extracted data or pre-established queries across multiple platforms such as Splunk, OS CLI/Terminal, Sentinel One, etc.
  • Experience using modern CSOC/Fusion Center enterprise security suite
  • Familiarity with Digital Forensics and Incident Response (DFIR) concepts
  • Experience participating in CIRT/CSIRT investigations
  • Knowledge of exploits, vulnerabilities, malware families and common attack vectors
  • Scripting (Python, PowerShell, bash), regex experience is a plus
  • Experience with firewalls, intrusion detection/prevention systems
  • Effective in collaborating with teams in remote offices and multiple cultures across the globe
  • Intermediate or higher Security Certifications are a plus - CYSA+, CISSP, CFR, CHFI, GCIH, GCFA, or GNFA, PenTest+, OSCP, etc.
  • Ability to tailor complicated Security and Technical information to the comprehension levels of intended audiences, whether that be non-technical Senior Executives or highly technical Subject Matter Experts
Government Careers

Government Careers

Government jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.

Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.

Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.

Show more

MORE JOBS