"Alerted.org

About Us

As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.

To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.

Job Description Summary

The Stratascale Associate Security Analyst - Operations manages and enhances the SIEM environment, performs in-depth security analysis, and supports incident handling to mitigate threats. This role involves collaborating with clients and internal teams to address security concerns, participating in threat hunting, providing training on best practices, and supporting automation and process improvement projects to enhance security operations and client success.

This position will report to the Charlotte, NC office on a hybrid schedule.

Role Description

• Manage and enhance the Security Information and Event Management (SIEM) environment, including log collection, aggregation, and infrastructure support.

• Perform in-depth analysis of security alerts and incidents, utilizing SIEM and SOAR technologies to identify and mitigate threats.

• Support the incident handling process across various platforms, ensuring timely investigation, escalation, and remediation of security incidents.

• Assist in maintaining an inventory of information assets and support scheduled security testing and risk management processes.

• Collaborate with clients and internal teams to address security program concerns and provide actionable recommendations.

• Provide coaching and training to team members and clients on security best practices and incident response strategies.

• Identify and address gaps in client environments, data ingestion, and configurations to improve security alert quality.

• Participate in threat hunting activities and stay informed about emerging cybersecurity threats and mitigation techniques.

• Develop and communicate high-quality reports and recommendations to stakeholders, ensuring clear understanding and resolution of security issues.

• Support projects aimed at automation and process improvements to enhance security operations and client success.

Behaviors and Competencies

Problem-Solving: Can identify problems, propose solutions, and take action to resolve them without explicit instructions.

Data Analysis: Can identify patterns and trends in data, propose hypotheses, and use statistical techniques to test them.

Self-Motivation: Can identify personal or professional growth opportunities, propose self-improvement strategies, and take action without explicit instructions.

Collaboration: Can actively participate in team discussions, respect differing opinions, and collaborate with others to achieve common goals.

Communication: Can effectively communicate complex ideas and information, and can adapt communication style to the audience.

Training: Can identify learning gaps within a team, propose training solutions, and take action to implement them without explicit instructions.

Initiative: Can identify opportunities for improvement, propose solutions, and take action without explicit instructions.

Detail-Oriented: Can identify errors or inconsistencies in work and make necessary corrections.

Organization: Can prioritize daily tasks, manage personal workflow, and utilize basic tools to keep track of responsibilities.

Follow-Up: Can independently track and follow up on tasks without requiring reminders, ensuring responsibilities are fulfilled.

Skill Level Requirements

• The ability to understand and implement best practices and measures for system security to protect organizational data and infrastructure - Intermediate

• Proficiency in working with and understanding security solutions from leading vendors such as Okta, Crowdstrike, Palo Alto, Proofpoint, CyberArk, SailPoint, Fastly, FireEye, and Fortinet - Intermediate

• Proficiency in configuring and managing Windows Server and Linux operating systems

• Ability to create clear and effective technical documentation - Intermediate

• Ability to simplify and effectively communicate complex problems to stakeholders across various functions and levels - Intermediate

• Experience in managing and maintaining computer systems and networks to ensure optimal performance and security - Intermediate

• Experience in understanding, managing, and correlating log data for effective security monitoring and analysis - Intermediate

Other Requirements

• 2-4 years of experience in Information Technology

• 2-4 years of experience in cybersecurity

• 2-4 years of experience in alert management

• Ability to travel to SHI, Partner, and Customer Events

• Ability to travel internationally

• Ability to travel 20%

• Advanced certification such as the following preferred:

o Industry certifications:

• CIAM

• CISM / CISA / CRISC

• SANS (GSEC, GREM, GCIH)

• TCM (PJMR)

o Vendor Solutions and product specific certifications or experience (or equivalent):

• Microsoft Sentinel or Splunk

• Sentinel One/Tanium

• MSSP/MDR security engineering experience.

The estimated annual pay range for this position is $60,000 - $90,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.

Equal Employment Opportunity – M/F/Disability/Protected Veteran Status