Senior Security Operations Center (SOC) Analyst

Position Overview Manages security operations tasks independently and contributes to the design and implementation of security controls. Job Description Senior Security Operations Center (SOC) Analyst. Leads investigation and mitigation of security incidents across the organization. Handles forensics and incident analysis while supporting team through knowledge sharing, process improvement, and shaping threat response. Focus includes DLP and insider risk initiatives such as incident analysis and process building. Key Responsibilities Incident Analysis & Handling: Triage alerts, investigate suspicious activity, lead incident response steps, and coordinate containment and recovery efforts. Data Collection & Normalization: Ensure logs and security data are gathered correctly, cleaned, and organized for analysis. Digital Forensics: Examine systems, files, logs, and network data to understand security events. Mentoring & Training: Guide newer analysts through training sessions and knowledge sharing. Technical / Process Guidance: Assist team members with technical questions, tool usage, investigation methods, and response workflows. Shift Leadership: Manage workload, oversee investigations, ensure smooth handoffs, and support teammates during shifts. Participate in rotating on‑call schedule as required. Innovation: Identify opportunities to improve processes, recommend new tools or automation, and refine team operations. Typical Day Review alerts and logs to identify potential threats or unusual activity. Lead or assist with active investigations toward containment and resolution. Run forensic analysis on hosts, cloud workloads, or network artifacts to uncover root causes. Collaborate with IT, cloud, engineering, or other security teams to gather data or take action. Share insights, troubleshoot, and walk teammates through techniques. Update documentation, write reports, or summarize incident findings. Teach team new tools or techniques. Handle shift responsibilities such as queue management and monitoring ongoing investigations. Identify process gaps or tools for improvement and propose solutions. Perform other tasks required by management. Qualifications Bachelor of Computer Science, Engineering, Information Security, Information Technology, or 4+ years of equivalent experience. 3+ years of enterprise level incident handling. Ability to partner with enterprise teams within a cybersecurity context. Effective oral and written communication skills with experience in cybersecurity technical process documentation. Demonstrated passion for cyber defense, commitment to maintaining technical proficiency. Proven record of thought leadership via innovation and non‑traditional solutions. Fundamental understanding of IT Security practices/programs/tooling, with demonstrated examples of driving initiatives forward. Preferred Qualifications Advanced cybersecurity certifications (GCFA, GCIA, GNFA, GCTI, GREM, GCIH, GPEN, OSCP, etc.). Cloud certifications (AWS, Azure, GCP, etc.). Proficiency in scripting and high‑level programming languages (Python, PowerShell, bash, etc.). Functional knowledge of SIEM, SOAR, malware sandboxing solutions and related tools. Please note: candidates requiring visa sponsorship now or in the future will not be considered. Location and Workplace Flexibility Zelis is headquartered in the U.S. with offices across the country and in Hyderabad, India. Employees work where the role requires, with a hybrid approach. Preference is given to candidates within approximately 50 miles of a U.S. office to support collaboration. In‑office presence is guided by team and business needs. Base Salary Range $105,000.00 - $133,000.00. Benefits US‑based full‑time associates are eligible for a competitive benefits package, including 401k with employer match, flexible paid time off, holidays, parental leave, life and disability insurance, and health benefits such as medical, dental, vision, and prescription drug coverage. Equal Employment Opportunity Zelis is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Accessibility Support If you are a qualified individual with a disability or a disabled veteran and require a reasonable accommodation with any part of the application and/or interview process, please email View email address on click.appcast.io. Disclaimer The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal responsibilities, duties, and skills from time to time. #J-18808-Ljbffr