Skip to content
SecRoles

Cyber Defense Senior Analyst

JobgetherRemote (US)June 17, 2026
Remote
Full-time
Security Operations Center
Mid · 3+ yrs

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Cyber Defense Senior Analyst based in the United States.

This role sits at the core of a 24/7 global cybersecurity monitoring function, where you will play a critical part in detecting, analyzing, and responding to security threats across a complex enterprise environment. The Cyber Defense Senior Analyst is responsible for triaging security events, investigating potential intrusions, and executing incident response actions aligned with established playbooks and service objectives. Working within a high-performing Cyber Fusion Center, you will collaborate with global teams to contain and remediate threats while ensuring accurate documentation and escalation of high-risk incidents. The role requires strong analytical capability to interpret logs, identify attack patterns, and assess risk across diverse environments. You will contribute directly to strengthening detection capabilities, improving response processes, and enhancing overall security posture. This is a high-impact operational role in a fast-paced SOC environment where precision, speed, and teamwork are essential.

Accountabilities:

  • Monitor, triage, and investigate security alerts and events across SIEM, EDR, and other security platforms as part of a 24/7 security operations function.
  • Perform in-depth analysis of potential threats, including malware, phishing, intrusion attempts, and anomalous activity, following defined incident response procedures.
  • Execute end-to-end incident response activities including containment, eradication, recovery, and post-incident documentation.
  • Escalate high-severity incidents to appropriate incident response and management teams while ensuring clear and timely communication.
  • Maintain accurate and detailed case documentation, including analysis findings, actions taken, and incident timelines.
  • Collaborate with internal and external stakeholders to support incident resolution and coordinated response efforts.
  • Contribute to the continuous improvement of SOC processes, including playbooks, SOPs, detection rules, and use cases.
  • Identify operational trends and risks, providing feedback to leadership to enhance detection and response capabilities.
  • Participate in shift handovers, ensuring continuity through clear reporting and case updates.

Requirements:

  • 3+ years of experience in a Security Operations Center (SOC) or Cyber Incident Response environment (or equivalent experience in cybersecurity, military, or law enforcement).
  • Strong understanding of incident response lifecycle, MITRE ATT&CK framework, and cyber attack methodologies.
  • Hands-on experience analyzing logs and security telemetry from SIEM, EDR, firewalls, proxies, and related systems.
  • Familiarity with tools such as Splunk, QRadar, CrowdStrike, Microsoft Defender, or similar security platforms.
  • Solid knowledge of operating systems (Windows, Linux, macOS), networking fundamentals, and cloud environments (AWS, Azure, GCP).
  • Ability to investigate and respond to security incidents including malware, phishing, data breaches, and network attacks.
  • Experience in containment, eradication, and recovery processes with a strong focus on root cause analysis.
  • Relevant cybersecurity certifications (e.g., GCIH, GCFA, CEH, GCED, CISSP, or CISM) are strongly preferred.
  • Strong analytical, documentation, and communication skills in a high-pressure operational environment.
  • Ability to work in rotating schedules, including a 10x4 Wednesday–Saturday shift pattern in a 24/7 environment.

Benefits:

  • Competitive compensation package with performance-based bonus opportunities
  • Comprehensive medical, dental, and vision insurance
  • 401(k) retirement plan with company match
  • Flexible work arrangements (remote-friendly role within the U.S.)
  • Generous PTO including vacation, sick leave, holidays, and volunteer time off
  • Professional development and training opportunities in advanced cybersecurity domains
  • Exposure to enterprise-scale security operations and global threat environments
  • Inclusive, people-first culture focused on wellbeing, collaboration, and growth.

How Jobgether works:

We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.

We appreciate your interest and wish you the best!

 Why Apply Through Jobgether? 

Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.

#LI-CL1

Job Details

Experience

Mid · 3+ yrs

Tools & Tech

AWS
Azure
CrowdStrike
GCP
Linux
macOS
Microsoft Defender
Splunk
Windows

Preferred Certs

CEH
CISM
CISSP
GCIH
Apply