Cyber Security Analyst

Cybersecurity Operations Analyst We are seeking a seasoned and proactive Cybersecurity Operations Analyst to join our growing Security Operations Center (SOC). In this role, you will be responsible for enhancing threat detection, streamlining incident response, and contributing to the continuous improvement of our cybersecurity operations across enterprise and cloud environments. Key Responsibilities Logging - Ensure the security operations team has security relevant cloud, infrastructure and application logs in a parsed format to a unified destination that has best practice data retention Detection - Respond to security alerts & review dashboards to monitor for suspicious activities/alerts for enterprise, cloud and application sources. Analyze suspicious activities/alerts including malware analysis and forensics and respond with appropriate actions. Response - Follow and improve procedures for Incident Response and participating in the cybersecurity on call rotation. Requirements 5 years of experience in cybersecurity operations or a related field. Strong expertise in incident detection and response in both enterprise and cloud (Azure/GCP) environments. Deep knowledge of threat actor TTPs and prioritizing detection based on risk. Proficient in log analysis and threat hunting across Windows, Linux, and macOS systems. Hands-on experience with SIEM platforms (e.g., ELK, YARA-L), SOAR tools, and endpoint technologies like CrowdStrike Falcon. Proficient in scripting (Python/PowerShell) and data analysis using SQL—preferably with BigQuery. Experience with forensic tools such as Mandiant Redline, EnCase, FTK, Sysmon, and analysis platforms like VirusTotal, CyberChef, or Cuckoo Sandbox. Strong communication skills to clearly articulate risk to technical and non-technical stakeholders. Experience building automated metrics pipelines, dashboards, and conducting monthly review processes. Preferred Tools & Technologies Cloud: Azure, GCP Security Tools: ELK, CrowdStrike, Mandiant Redline, SOAR, YARA, Cuckoo Sandbox, VirusTotal Scripting & Automation: Python, PowerShell, SQL, YAML, RegEx, Jupyter Forensics & IR: EnCase, FTK, Sysmon, PowerForensics, OpenIOC Frameworks & Compliance: NIST CSF, MITRE ATT&CK, ISO 27001, SOC2 Productivity: Slack, Jira, ServiceNow Why Join Us? Innovation and Growth : Work in an environment that encourages continuous learning and improvement. Impactful Work : Your efforts will directly affect the scalability and performance of data systems that support millions of users. Career Development : We invest in your professional growth and provide opportunities to expand your technical expertise and leadership skills. If you’re excited about building robust, scalable infrastructure and working with a team of passionate engineers, we want to hear from you! The position is not eligible for employment-based visa/immigration sponsorship.

Location: México, MX

Posted Date: 6/15/2025