Cyber Operations Analyst

Piper Companies is seeking a Cyber operations analyst to serve as the primary escalation point for security alerts, incidents, and threat investigations. You will analyze, contain, and remediate security events, working closely with IT and business teams to protect systems, data, and users.

Responsibilities of the Cyber Operations Analyst include:

·       Monitor and triage alerts from SIEM, EDR, email security, and other tools

·       Investigate escalated alerts and perform threat hunting using IOCs and threat intelligence

·       Lead response efforts for medium-to-high severity incidents

·       Conduct root cause analysis and document findings in post-incident reports

·       Coordinate containment and eradication efforts with internal teams

·       Tune and maintain SIEM, EDR, and other platforms to improve detection fidelity

·       Develop custom detection rules, dashboards, and reports

·       Manage vulnerability lifecycle: scanning, analysis, prioritization, and remediation tracking

·       Provide technical guidance and recommendations to IT teams for patching and configuration

·       Track remediation efforts to ensure timely resolution

·       Act as liaison between security operations and IT/business units

·       Mentor Tier 1 analysts and communicate findings in clear, non-technical language

·   Recommend and implement process and tooling enhancements  

· Maintain and refine incident response runbooks and escalation procedures

Qualifications for the Cyber Operations Analyst:

• 2–4 years of experience in security operations or incident response
• Hands-on experience with SIEM, EDR, and network security tools
• Strong understanding of threat actors, MITRE ATT&CK, and incident response best practices
• Ability to analyze logs, packets, and system behavior to detect malicious activity
• Excellent written and verbal communication skills
• Preferred:
• Experience in small-team environments with cross-functional responsibilities
• Familiarity with cloud security monitoring (AWS, Azure, GCP)
• Industry certifications such as Security+, CySA+, GCIH, GCIA
• Scripting skills in Python, PowerShell, or Bash

Compensation for the Cyber Operations Analyst:

·       $48 - $58/ HR (PTO, Paid holidays, Cigna insurance, 401k)

Keywords: #LI-RL1

Cybersecurity, Security Operations, Incident Response, Threat Detection, Threat Hunting, SIEM, EDR, Email Security, MSSP, Root Cause Analysis, Post-Incident Reports, Containment, Eradication, Vulnerability Management, Risk Management, Patch Management, Configuration Management, MITRE ATT&CK, Network Security, Log Analysis, Packet Analysis, System Behavior, Custom Detection Rules, Dashboards, Reports, Cloud Security, AWS, Azure, GCP, Security+, CySA+, GCIH, GCIA, Python, PowerShell, Bash, Technical Guidance, Tier 1 Analysts, Runbooks, Escalation Procedures, Collaboration, Communication, Analytical Skills, Problem Solving, Adaptability, Ownership