Job Title: Cyber Security Operations Analyst
Location: Boston, MA (Onsite)
Duration: 11 Months
Clearance/Eligibility: Must be authorized to work in the U.S.
A government-affiliated organization is seeking a Cyber Security Operations Analyst to join its Information Security team. This role plays a vital part in protecting the organization's digital infrastructure by monitoring, analyzing, and responding to security threats. You’ll work alongside a small team of cybersecurity professionals and report directly to the Information Security Lead.
This is a hands-on technical position ideal for someone passionate about cybersecurity, incident response, and continuous threat detection.
Respond to alerts from Security Operations Center (SOC), Endpoint Detection and Response (EDR), and identity security platforms.
Triage and resolve security incidents and requests via ServiceNow.
Analyze system logs, reports, and threat intelligence for actionable findings.
Configure and tune alerts to enhance detection and response capabilities.
Maintain and optimize SIEM dashboards, queries, and data quality.
Ensure integration and compliance with Common Information Model (CIM).
Conduct proactive threat hunting using indicators of compromise (IOCs), indicators of attack (IOAs), and known threat patterns.
Leverage Security Orchestration, Automation and Response (SOAR) workflows for streamlined remediation.
Investigate network anomalies via web proxy and firewall traffic analysis.
Support all phases of incident response, including post-incident reviews.
Continuously evaluate infrastructure and applications for risk exposure.
Build and maintain dashboards to track key security metrics and performance indicators.
Enhance visibility across networks, endpoints, and cloud environments.
Recommend and implement technical controls for system hardening and content filtering.
Audit and verify deployment and effectiveness of security tools and policies.
Ensure compliance with organizational and regulatory security standards.
Support vulnerability scanning, assessment, and reporting.
Monitor and report on the security posture of systems and applications.
Respond to high-impact security alerts, including malware, zero-day threats, and exploits.
Stay informed of the latest cyber threats, trends, and compliance requirements.
Provide security solution recommendations based on operational risk assessments.
Apply security frameworks and best practices across various domains.
Provide end-user support for investigations and cybersecurity awareness.
Participate in emergency response efforts and on-call rotations.
Contribute to the continuous improvement of the organization’s cybersecurity program.
Strong analytical and technical problem-solving skills
Experience with SIEM, SOAR, EDR, and threat intelligence tools
Ability to work independently and collaboratively in a fast-paced environment
Excellent written and verbal communication skills
Passion for continuous learning and cybersecurity innovation