Technical Security Analyst#

As a Security Operations (SecOps) Analyst, you are passionate about security analytics and application protection. You thrive on solving complex problems and proactively seek new ways to uncover and address vulnerabilities. You will join a dynamic team responsible for designing, managing, and securing mission-critical systems for leading organizations. Your role will focus on security scanning, vulnerability management, and threat analysis to ensure the integrity and resilience of our products and services.

The Role

This position is part of the Infrastructure and Engineering team within Benefits Outsourcing's Product & Technology group. As a SecOps Analyst, you will lead and support security operations and analytics for cloud solutions, with a strong emphasis on application security and vulnerability management.

Key Responsibilities

• Conduct security scanning using SAST, DAST, and penetration testing tools to identify vulnerabilities in applications and infrastructure.
• Manage the vulnerability process lifecycle: triage, research, resolve, and document security findings.
• Monitor and analyze data for security threats, leveraging automated scan tools and manual techniques.
• Support and enhance security threat infrastructure, including continuous improvement of scanning and remediation processes.
• Collaborate with development and engineering teams to integrate security into CI/CD pipelines.
• Perform threat analysis and provide actionable recommendations to mitigate risks.
• Ensure adherence to SLA (Service Level Agreements) for vulnerability remediation and security operations.
• Project manage security assessments and findings, ensuring timely resolution and reporting.
• Maintain compliance with data security policies and industry standards.
• Continuously learn and apply new security technologies and practices.

The requirements:

• BS / BA degree or relevant experience.
• 3 - 5+ years of demonstrated experience in security scanning (SAST, DAST), Penetration Testing and vulnerability management for enterprise applications.
• Strong understanding of application security principles and threat analysis methodologies.
• Experience with security testing suites and scan tools (e.g., Burp Suite, OWASP ZAP, Nessus, Qualys, etc.).
• Data analytics experience: ability to analyze and refine data sets to uncover meaningful security information.
• 3 - 5+ years of experience with Azure or equivalent cloud platforms. 
• Scripting (PowerShell preferred) and software development experience.
• Experience modeling data to refine output into actionable security insights.
• Data querying and analytics (SQL, Kusto/KQL).
• Strong analytical and problem-solving skills.
• Ability to work independently and within cross-functional teams.
• Experience with ticketing systems (JIRA) and task management.
• Flexible, coachable, self-driven, and passionate about learning in a fast-paced environment.

Inclusive job opportunity