Cybersecurity Analyst

Infovision is a global IT services company dedicated to providing innovative solutions that drive digital transformation and enhance operational efficiency. We foster a collaborative environment that empowers our teams to grow, while working on impactful projects with leading client.

Cybersecurity Operations Analyst

We are seeking a seasoned and proactive Cybersecurity Operations Analyst to join our growing Security Operations Center (SOC). In this role, you will be responsible for enhancing threat detection, streamlining incident response, and contributing to the continuous improvement of our cybersecurity operations across enterprise and cloud environments.

Key Responsibilities

• Logging - Ensure the security operations team has security relevant cloud, infrastructure and application logs in a parsed format to a unified destination that has best practice data retention
• Detection - Respond to security alerts & review dashboards to monitor for suspicious activities/alerts for enterprise, cloud and application sources. Analyze suspicious activities/alerts including malware analysis and forensics and respond with appropriate actions.
• Response - Follow and improve procedures for Incident Response and participating in the cybersecurity on call rotation.

Requirements

• 5+ years of experience in cybersecurity operations or a related field.
• Strong expertise in incident detection and response in both enterprise and cloud (Azure/GCP) environments.
• Deep knowledge of threat actor TTPs and prioritizing detection based on risk.
• Proficient in log analysis and threat hunting across Windows, Linux, and macOS systems.
• Hands-on experience with SIEM platforms (e.g., ELK, YARA-L), SOAR tools, and endpoint technologies like CrowdStrike Falcon.
• Proficient in scripting (Python/PowerShell) and data analysis using SQL—preferably with BigQuery.
• Experience with forensic tools such as Mandiant Redline, EnCase, FTK, Sysmon, and analysis platforms like VirusTotal, CyberChef, or Cuckoo Sandbox.
• Strong communication skills to clearly articulate risk to technical and non-technical stakeholders.
• Experience building automated metrics pipelines, dashboards, and conducting monthly review processes.

Preferred Tools & Technologies

• Cloud: Azure, GCP
• Security Tools: ELK, CrowdStrike, Mandiant Redline, SOAR, YARA, Cuckoo Sandbox, VirusTotal
• Scripting & Automation: Python, PowerShell, SQL, YAML, RegEx, Jupyter
• Forensics & IR: EnCase, FTK, Sysmon, PowerForensics, OpenIOC
• Frameworks & Compliance: NIST CSF, MITRE ATT&CK, ISO 27001, SOC2
• Productivity: Slack, Jira, ServiceNow

What we offer:

Competitive salary & benefits – Including attractive legal and above-the-law perks.

Collaborative, innovative work environment.

Career growth opportunities & skill development.

Flexible remote work options.

If you’re ready to take the next step in your career and join a dynamic, forward-thinking team, apply today!

Contact:

abdi.bernal@infovision.com

• The position is not eligible for employment-based visa/immigration sponsorship.