Technical Security Analyst#

As a Security Operations (SecOps) Analyst you are passionate about security analytics and application protection. You thrive on solving complex problems and proactively seek new ways to uncover and address vulnerabilities. You will join a dynamic team responsible for designing managing and securing mission-critical systems for leading organizations. Your role will focus on security scanning vulnerability management and threat analysis to ensure the integrity and resilience of our products and services.

The Role

This position is part of the Infrastructure and Engineering team within Benefits Outsourcings Product & Technology group. As a SecOps Analyst you will lead and support security operations and analytics for cloud solutions with a strong emphasis on application security and vulnerability management.

Key Responsibilities

• Conduct security scanning using SAST DAST and penetration testing tools to identify vulnerabilities in applications and infrastructure.
• Manage the vulnerability process lifecycle: triage research resolve and document security findings.
• Monitor and analyze data for security threats leveraging automated scan tools and manual techniques.
• Support and enhance security threat infrastructure including continuous improvement of scanning and remediation processes.
• Collaborate with development and engineering teams to integrate security into CI/CD pipelines.
• Perform threat analysis and provide actionable recommendations to mitigate risks.
• Ensure adherence to SLA (Service Level Agreements) for vulnerability remediation and security operations.
• Project manage security assessments and findings ensuring timely resolution and reporting.
• Maintain compliance with data security policies and industry standards.
• Continuously learn and apply new security technologies and practices.

• BS / BA degree or relevant experience.
• 3 - 5 years of demonstrated experience in security scanning (SAST DAST) Penetration Testing and vulnerability management for enterprise applications.
• Strong understanding of application security principles and threat analysis methodologies.
• Experience with security testing suites and scan tools (e.g. Burp Suite OWASP ZAP Nessus Qualys etc.).
• Data analytics experience: ability to analyze and refine data sets to uncover meaningful security information.
• 3 - 5 years of experience with Azure or equivalent cloud platforms.
• Scripting (PowerShell preferred) and software development experience.
• Experience modeling data to refine output into actionable security insights.
• Data querying and analytics (SQL Kusto/KQL).
• Strong analytical and problem-solving skills.
• Ability to work independently and within cross-functional teams.
• Experience with ticketing systems (JIRA) and task management.
• Flexible coachable self-driven and passionate about learning in a fast-paced environment.

Additional Desirable Skills

• 1 to 3 years of software development experience.
• Scrum agile and continuous integration experience.
• Experience with Power BI or equivalent analytics platforms.