
Senior Security Analyst
Posted 3 hours ago

Posted 3 hours ago
This is a fully remote position, open to applicants in Massachusetts.
• Oversee real-time surveillance, triage, and evaluation of intricate security incidents, delivering validated assessments of threats and their severity.
• Design and automate sophisticated detection use cases across DigitalOcean's cloud and corporate settings, utilizing in-depth knowledge of adversary TTPs to create scalable alerting solutions.
• Create, monitor, and report on essential metrics for the effectiveness of security monitoring and incident response performance, leveraging data to drive enhancements.
• Take ownership of and refine the security monitoring program strategy, ensuring alignment with the evolving threat landscape and organizational priorities.
• Collaborate closely with Infrastructure Security Engineers to identify log sources, integrate, and sustain data pipelines (e.g., log sources, forwarders, parsing, enrichment).
• Conduct proactive threat hunting and hypothesis-driven investigations, examining anomalous activity to reveal hidden or emerging threats within DigitalOcean’s environments.
• Mentor and support junior analysts, reviewing escalated incidents and providing technical guidance during incident response.
• Coordinate threat assessments using historical data and architecture diagrams to pinpoint attack vectors.
• Work with various teams to address monitoring deficiencies and enhance overall security.
• Enhance security tools and processes to minimize false positives, improve detection accuracy, and automate response workflows wherever applicable.
• Lead the development and upkeep of comprehensive playbooks, runbooks, and documentation to standardize detection and response activities.
• A minimum of 5 years of practical experience with SIEM platforms and endpoint detection tools, demonstrating a significant impact on security monitoring initiatives.
• Proven expertise in designing and fine-tuning intricate detection rules and alerting mechanisms across various environments.
• In-depth knowledge of network and endpoint security, attack methodologies, tactics of threat actors, and mitigation strategies.
• Experience in proactive threat hunting, vulnerability management, and collaboration with red teams or penetration testers.
• Established leadership in advancing security program initiatives, defining metrics, and shaping cross-team security strategies.
• Strong communication skills for technical documentation, incident reporting, and mentoring less experienced analysts.
• Demonstrated experience with scripting and query languages (Python, Bash, SQL) to automate detection and response processes.
• Proven proficiency in Linux, Windows, and macOS.
• Employee Assistance Program
• Local Employee Meetups
• Flexible time off policy
• Reimbursement for relevant conferences, training, and education
• Access to LinkedIn Learning's 10,000+ courses
• Competitive array of benefits
HumanIT Digital Consulting
Solo Network
Spread Tecnologia
Cooperativa Central Ailos
Get handpicked remote jobs straight to your inbox weekly.