Cyber Security Operations Analyst
@ BigBear.ai

Hybrid
$120,000
Hybrid
Full Time
Posted 24 days ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXXX XXXXXXXXXXXXX XXXXXX******* @bigbear.ai
Recommended after applying

Job Details

Overview

BigBear.ai is seeking a highly skilled and motivated Cyber Security Operations Analyst to join our dynamic team. In this role, you will safeguard digital assets, detect threats, and implement security measures for cutting-edge technologies.

Key Responsibilities

Threat Detection & Investigation:

  • Monitor and triage alerts from SIEM, EDR, email, and other tools.
  • Investigate escalated alerts from MSSP and automated detections.
  • Perform threat hunting based on IOCs, suspicious activity, and threat intelligence.

Incident Response:

  • Lead responses for medium-to-high severity incidents.
  • Conduct root cause analysis and document findings.
  • Coordinate with teams to contain and eradicate threats.

Security Tool Management:

  • Tune and maintain SIEM, EDR, and security platforms.
  • Develop custom detection rules, dashboards, and reports.

Vulnerability & Risk Management:

  • Oversee vulnerability management from scanning to remediation.
  • Validate and prioritize vulnerabilities based on exploitability.
  • Collaborate with IT for patching and configuration changes.

Collaboration & Communication:

  • Act as liaison between security operations and IT/business units.
  • Provide guidance to Tier 1 analysts and communicate findings.
  • Recommend process and tooling enhancements.

What You Need To Have

  • Bachelor's degree in a related field.
  • 4+ years of experience in security operations and incident response.
  • Experience with SIEM, EDR, and network security tools.
  • Strong understanding of threat actors and attack techniques (MITRE ATT&CK).
  • Excellent analytical and communication skills.

What We'd Like You To Have

  • Experience in a small-team environment with cross-functional roles.
  • Familiarity with cloud security monitoring (AWS, Azure, GCP).
  • Relevant industry certifications such as Security+, CySA+, GCIH, or GCIA.
  • Scripting skills (Python, PowerShell, Bash) for automation.
  • Experience with software development teams, MSSP collaborations, and IT GRC.
  • Knowledge of IAM solutions like Okta, Entra, SailPoint.

About BigBear.ai

BigBear.ai provides AI-powered decision intelligence solutions for national security, supply chain management, and digital identity. Headquartered in McLean, Virginia, the company is publicly traded on the NYSE under BBAI.

Key skills/competency

  • Cybersecurity
  • Threat Analysis
  • Incident Response
  • SIEM
  • EDR
  • Vulnerability Management
  • Risk Assessment
  • Automation
  • Cloud Security
  • Communication
Apply without a personalized resume

How to Get Hired at BigBear.ai

🎯 Tips for Getting Hired

  • Research BigBear.ai's culture: Study mission, values, and recent news.
  • Customize your resume: Highlight SIEM, EDR, and incident skills.
  • Showcase certifications: Emphasize Security+, CySA+, or similar.
  • Prepare for technical questions: Review threat intelligence and incident response.

📝 Interview Preparation Advice

Technical Preparation

Review SIEM and EDR configurations.
Practice log and packet analysis.
Study incident response case studies.
Refine scripting skills in Python.

Behavioral Questions

Describe teamwork in crisis scenarios.
Explain handling high-pressure incidents.
Share past incident collaboration examples.
Discuss communication across teams.

Frequently Asked Questions