Security Analyst (SOC)

About Gartner Information Security:

We are a group of passionate information security professionals dedicated to Protecting Detecting and Responding to threats. Our team is filled with lifelong learners who are consistently researching ways to better defend and stay ahead of the threats of tomorrow. We are a collaborative group where good ideas come together whether they come from the most experienced or the newest members of the team.

About The Role:

Gartner is looking for a Security Analyst with a strong blend of technical expertise analytical ability and interpersonal skills to join its Security Operations team. The ideal candidate is experienced in investigating and responding to security incidents skilled in working with a variety of security tools and cloud environments and comfortable collaborating across teams. You should be able to critically evaluate alerts and detection logic automate repetitive tasks and communicate findings clearly to both technical and non-technical stakeholders. This role is responsible for providing cyber security analysis incident response and defending Gartners network and intellectual properties.

What You Will Do:

• Investigate and respond to security events and incidents end to end providing detailed notes and technical reports
• Hunt for malicious activity misconfigurations and other anomalies
• Participate in team projects to enhance SOC capabilities and develop innovative detection content aligned with cybersecurity frameworks (e.g. ATT&CK Cyber Kill Chain)
• Create and maintain runbooks and playbooks for repeatable tasks
• Build and implement automation to improve security monitoring and eliminate repetitive tasks
• Ensure smooth handover of alerts/incidents across global team members and provide rotational on-call support for emergencies
• Collaborate with key stakeholders and cross-functional teams to identify respond to and remediate information security issues
• Bring forward ideas and solutions to drive continuous improvement and operational excellence

What You Will Need:

• Bachelors in Computer Science Information Security or Engineering
• 1-3 years of experience in a SOC environment
• Commitment to continuous improvement and operational excellence
• Demonstrated critical thinking and ability to challenge existing processes rules and detections
• Strong interpersonal and communication skills; able to collaborate and work proactively in a time-sensitive environment
• Experience with incident analysis technical reporting and identifying tuning opportunities
• Threat hunting or red/purple team experience (practical or lab-based) is a plus
• Digital Forensics and Incident Response (DFIR) skills
• Ability to automate tasks and code solutions (Python PowerShell Bash)
• Hands-on experience with cloud environments including AWS Azure and GCP
• Experience with Microsoft 365 (M365) security monitoring and investigations distinct from general Azure security experience
• Hands-on experience with security tools such as SIEM EDR web proxy and email security solutions
• Advanced skills in reading interpreting and tuning SIEM queries and detection logic (e.g. SPL SQL KQL)
• Relevant certifications (e.g. GCIH GCFA) are a plus

Who You Are:

• Passionate about security and problem-solving
• Willing to learn new technology platforms
• Strong team player with an innovation mindset

What youll receive:

• Competitive compensation.
• Limitless growth and learning opportunities.
• A collaborative and positive culture - join a diverse team of professionals that are as smart and driven as you.
• A chance to make an impact your work will contribute directly to our strategy.
• Enjoy the flexibility of working from home and the energy of collaborating with peers in our dynamic offices.
• 20 PTO days plus holidays and floating holidays in your first year.
• Extensive medical dental insurance and vision plan.
• 401K with corporate match immediate vesting.
• Health-and-wellness-related allowance programs.
• Parental leave.
• Tuition reimbursement.
• Employee Stock Purchase Plan.
• Employee Assistance Program.
• Gartner Gives Charity Match.

And much more!

What are we:

• Action Oriented - Deliver fast get great results. We embrace the vision roadmap to success and the action it takes to make it happen.
• Intellectually Curious - Seek to learn love to teach. Were humble and embrace respectful radical candor with a mindset of ongoing professional and personal development.
• Collaborative - One team shared mission. We welcome feedback and understand the value of working together to accomplish more than what is possible individually.

#LI-JD6

#LI-Hybrid

#LI-Technology

Who are we

At Gartner Inc. (NYSE:IT) we guide the leaders who shape the world.

Our mission relies on expert analysis and bold ideas to deliver actionable objective business and technology insights helping enterprise leaders and their teams succeed with their mission-critical priorities.

Since our founding in 1979 weve grown to 21000 associates globally who support 14000 client enterprises in 90 countries and territories. We do important interesting and substantive work that matters. Thats why we hire associates with the intellectual curiosity energy and drive to want to make a difference. The bar is unapologetically high. So is the impact you can have here.

What makes Gartner a great place to work

Our vast virtually untapped market potential offers limitless opportunities opportunities that may not even exist right now for you to grow professionally and flourish personally. How far you go is driven by your passion and performance.

We hire remarkable people who collaborate and win as a team. Together our singular unifying goal is to deliver results for our clients.

Our teams are inclusive and composed of individuals from different geographies cultures religions ethnicities races genders sexual orientations abilities and generations.

We invest in great leaders who bring out the best in you and the company enabling us to multiply our impact and results. This is why year after year we are recognized worldwide as a great place to work.

What do we offer

Gartner offers world-class benefits highly competitive compensation and disproportionate rewards for top performers.

In our hybrid work environment we provide the flexibility and support for you to thrive working virtually when its productive to do so and getting together with colleagues in a vibrant community that is purposeful engaging and inspiring.

Ready to grow your career with Gartner Join us.

The policy of Gartner is to provide equal employment opportunities to all applicants and employees without regard to race color creed religion sex sexual orientation gender identity marital status citizenship status age national origin ancestry disability veteran status or any other legally protected status and to seek to advance the principles of equal employment opportunity.

Gartner is committed to being an Equal Opportunity Employer and offers opportunities to all job seekers including job seekers with disabilities. If you are a qualified individual with a disability or a disabled veteran you may request a reasonable accommodation if you are unable or limited in your ability to use or access the Companys career webpage as a result of your disability. You may request reasonable accommodations by calling Human Resources at 1 or by sending an email to.

By submitting your information and application you confirm that you have read and agree to the country or regional recruitment notice linked below applicable to your place of residence.

Gartner Applicant Privacy Link: efficient navigation through the application please only use the back button within the application not the back arrow within your browser.