Senior Security Analyst

OutSystems OutSystems · Enterprise · United States · Remote

Senior Security Analyst role focused on Incident Response, Threat Intelligence, and Threat Hunting within a global SOC. Responsibilities include leading investigations, proactive threat detection, and improving security operations capabilities. Requires hands-on experience with SIEM, EDR, scripting, and cloud environments.

What you'd actually do

  1. Own complex incident investigations end-to-end, from detection to containment and remediation. Conduct root cause analysis and post-incident reviews.
  2. Continuously hunt for anomalies and threats across on-prem and cloud environments using threat intelligence, analytics, and behavioral patterns.
  3. Monitor global threat actor activity, transform raw intel into actionable defense strategies, and collaborate with internal teams to harden security posture of OutSystems.
  4. Work with engineering and DevSecOps teams to improve detection coverage, enrich SIEM use cases, and automate response processes.
  5. Develop, optimize, and maintain incident response and threat hunting playbooks, ensuring operational excellence and consistency.

Skills

Required

  • 4–6+ years of experience in a SOC, MDR, or enterprise security team
  • In-depth knowledge of the MITRE ATT&CK Framework, Cyber Kill Chain, and adversary TTPs
  • Strong understanding of SIEM tools (e.g., Splunk, Sentinel, QRadar), EDR, and other detection technologies
  • Proficiency with scripting or query languages (e.g., Python, PowerShell, KQL, YARA)
  • Familiarity with AWS, Azure, and/or other cloud environments
  • Familiarity with web technologies and protocols (web applications, APIs, service-oriented architectures) and the threats against them
  • Experience with log analysis, forensic tools, and threat intelligence platforms (e.g., MISP, ThreatConnect)
  • Ability to translate technical findings into clear, actionable insights for technical and non-technical audiences
  • Strong written and verbal communication skills, with experience presenting to stakeholders or executive teams

Nice to have

  • Relevant certifications (e.g., GCIA, GCIH, GNFA, GCFA, GCTI, OSCP)
  • a degree in a cybersecurity-related field
  • Experience with detection-as-code, version control, and CI/CD for security content

What the JD emphasized

  • hands-on IR, TI, or Threat Hunting focus
  • deep expertise in attacker TTPs
  • proactive threat detection
  • incident management