Senior Security Analyst


The Basics:

The Senior Security Analyst role provides candidates with an opportunity to help grow and scale a security operations program with responsibilities across on-premise and cloud corporate environments. Candidates will work with a team to enhance strategies, implement detective and preventive mechanisms, develop standard operating procedures, automate repeatable tasks. Additionally, candidates will respond to and be an escalation point for security-related events and alerts and perform remediation.

What you’ll do:

  • Assist with the development of detection and response strategies (cloud & SaaS focus)
  • Implement detection mechanisms for existing and emerging threats (cloud & SaaS focus)
  • Perform remediation of security incidents and events
  • Develop automation playbooks to improve the efficiency of operation processes
  • Provide subject matter expertise on monitoring requirements for applications and services
  • Act as an escalation point for event investigation and response
  • Collaborate with security engineering on the implementation and deployment of tools
  • Perform event and incident triage (e.g., malware triage, network analysis, live response, etc.)
  • Develop and maintain security operations processes & documentation (e.g., runbooks, etc.)
  • Perform threat hunts and translate results actionable detection and repeatable processes

We’re looking for someone with:

  • Education
    • Bachelor’s Degree in Computer Science, IT or other relevant degree or equivalent work experience
  • Experience
    • 4+ years working in a Security Operations or equivalent role
    • 2+ years working in security roles for cloud products and SaaS services
    • Deep knowledge of cloud architecture, cloud security, and cloud services
    • Threat modeling, including developing countermeasures, of SaaS applications
    • Experience in incident response and forensics for cloud and on premise environments
    • Familiarity with implementation of multi-tenant cloud environments
    • Strong understanding of networking basics, including TCP/IP and layer 7 protocols
    • Experience administering and responding to events on Linux, MacOS, and Windows operating systems
    • Proficiency with common security tools and platforms (e.g., SIEMs, vulnerability scanners, and malware analyzers)
    • Proficiency with IDS/IPS systems and endpoint Antivirus and EDR products
    • Deep understanding of attacker tactics, techniques, and procedures
    • Experience with analyzing security event logs, and detecting and responding to security events
    • Experience with automation platforms and automation of repetitive tasks
    • Proficiency in Python
    • Excellent communication (verbal and written), critical thinking, and analytical skills
    • Ability to work both independently and as part of a team

About Tanium:

At Tanium, we empower the world’s largest organizations to manage and protect their mission-critical networks. There’s a reason why 6 of the top 10 retailers, 12 of the top 15 US banks, and 4 of the US Armed Forces use Tanium. We provide lightning-fast capabilities at their fingertips to see everything and do anything across their computer networks – with unparalleled scale.

We pride ourselves on being unstoppable in the pursuit of our mission. We are diverse problem solvers driven to do the right thing and win as a team. Join our team at