Cyber Operations Analyst
Role details
Job location
Tech stack
Job description
Triage Rapid7 Qualys Operations Management ServiceNow Prioritization Risk Reduction Cloud Security Email Security Network Security Windows Defender Cyber Operations Cyber Engineering Business Valuation Workflow Management Process Improvement Incident Management Enterprise Security Operational Reporting Full Stack Development Artificial Intelligence Business Transformation Vulnerability Management Cyber Threat Intelligence Attack Surface Management Business Continuity Planning Endpoint Detection And Response, Review and triage findings from Threat Exposure Management platforms.
Validate findings to determine whether they are accurate, actionable, duplicate, accepted risk, or false positives.
Prioritize exposures based on exploitability, asset criticality, business impact, compensating controls, and likelihood of attack.
Correlate exposure findings across multiple tools such as vulnerability management, EDR, identity, email security, cloud security, external attack surface, and network security platforms.
Create clear, actionable remediation tasks for infrastructure, endpoint, identity, cloud, and application teams.
Track remediation progress and follow up with asset owners until findings are resolved, mitigated, or risk accepted.
Document analysis notes, ownership, risk rationale, and recommended next steps within the exposure management workflow.
Identify trends in recurring findings and recommend process improvements to reduce repeat exposure.
Assist with executive and operational reporting, including exposure status, aging, remediation progress, risk reduction, and high-priority findings.
Support Cyber Operations with prioritization of findings tied to active threats, known exploited vulnerabilities, misconfigurations, identity risks, and internet-facing exposure.
Partner with internal teams to clarify technical findings and help translate them into business-relevant risk., Use of Artificial Intelligence (AI): We may use Artificial Intelligence (AI) to support parts of our hiring process, including sourcing, screening, and evaluating candidates. AI helps assess applications and qualifications, but final decisions are made by our hiring team. By applying, you acknowledge and agree that your application may be reviewed using AI tools. Related Jobs Cyber Operations Analyst TEKsystems McKinney, TX*Remote JIRA Triage Rapid7 Qualys Operations Management ServiceNow Prioritization Risk Reduction Cloud Security Email Security Network Security Windows Defender Cyber Operations Cyber Engineering Business Valuation Workflow Management Process Improvement Incident Management Enterprise Security Operational Reporting Full Stack Development Artificial Intelligence Business Transformation Vulnerability Management Cyber Threat Intelligence Attack Surface Management Business Continuity Planning Endpoint Detection And Response
Requirements
Experience with Nagomi or similar Threat Exposure Management / Continuous Threat Exposure Management platforms.
Experience with tools such as CrowdStrike, Zscaler, Wiz, Tenable, Qualys, Rapid7, Microsoft Defender, ServiceNow, Jira, or similar platforms.
Understanding of MITRE ATT&CK, KEV catalog, exploitability scoring, asset criticality, and risk-based vulnerability management.
Experience supporting SOC, Cyber Operations, or Cyber Engineering teams.
Familiarity with cloud, identity, endpoint, email, and network security findings.
Skills
Vulnerability management, Incident management, cyber threat intelligence, threat assessment
Top Skills Details
Vulnerability management,Incident management,cyber threat intelligence,threat assessment
Additional Skills & Qualifications
3+ years of experience in cyber operations, vulnerability management, threat exposure management, security operations, or related security roles.
Experience reviewing and prioritizing security findings from enterprise security platforms.
Strong understanding of vulnerabilities, CVEs, misconfigurations, attack paths, exposed services, identity risks, and asset criticality.
Ability to determine whether a finding represents real risk or operational noise.
Experience working with remediation owners across infrastructure, endpoint, cloud, network, and identity teams.
Strong analytical and documentation skills.
Ability to communicate technical risk in a clear, simple, and actionable way.
Experience using ticketing or workflow platforms to track remediation activity.
Comfortable working independently and managing large volumes of findings.
Benefits & conditions
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
- Medical, dental & vision
- Critical Illness, Accident, and Hospital
- 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
- Life Insurance (Voluntary Life & AD&D for the employee and dependents)
- Short and long-term disability
- Health Spending Account (HSA)
- Transportation benefits
- Employee Assistance Program
- Time Off/Leave (PTO, Vacation or Sick Leave) Workplace Type