Quadcode SaaS logo
Quadcode SaaS

At Quadcode we build brokerage platforms. Go live in six weeks with an award-winning turnkey solution.

Senior Security Analyst – L2/L3

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 501-1,000H1B No SponsorCompany SiteLinkedIn

Location

Georgia

Posted

7 days ago

Salary

0

Seniority

Senior

Bachelor Degree3 yrs expRussianEnglishCloudPythonSplunk

Job Description

Senior Security Analyst – L2/L3

Quadcode SaaS

• Work closely with infrastructure teams (Admins, NOC, OPS, Compliance), translating security signals into actionable findings and coordinating response across operating systems, infrastructure, and cloud environments. • Responsible for security event monitoring, incident response, and continuous improvement of detection and IR processes. • Participate in Agile (2-week sprints, grooming, planning, retrospectives) and use collaborative tools for teamwork. • Handle working hours during business hours, with paid overtime in case of incidents. • Work with a modern stack and grow within the company — including cloud and hybrid infrastructure, and AI applied to real security work. • Conduct event correlation rules development and automation.

Job Requirements

  • At least 3 years of specialized experience as a Security Analyst, including L2 incident response responsibilities.
  • Automation skills (Python).
  • Experience investigating incidents in distributed environments, including those affecting remote employees.
  • Experience collecting and processing indicators of compromise from various systems.
  • Experience writing correlation rules.
  • Experience testing correlation searches via attack emulation.
  • Knowledge of security mechanisms of modern operating systems.
  • Understanding of network, infrastructure, web application, and cloud attack techniques.
  • Hands-on experience operating Splunk (or an any SIEM with willingness to ramp on Splunk quickly).
  • Experience analyzing network traffic.
  • Experience with MITRE ATT&CK.
  • Soft skills to communicate effectively with other IT and Business teams.
  • Russian C1 and English B1/B2 for internal and cross-team work.

Benefits

  • Full-time remote work model (service provider contract).
  • Competitive compensation (paid in EUR).
  • Flexible working hours.
  • All necessary tools for comfortable and efficient work.
  • Corporate training.
  • Corporate AI subscriptions (Claude, Gemini, GPT, etc.).
  • Access to a rewards marketplace offering products and language courses, redeemable using the company’s internal currency.
  • A friendly, supportive, and positive working environment where your data-driven decisions directly impact the product.

Related Job Pages

More Security Analyst Jobs

Cybersecurity Analyst

UnitedHealth Group

UnitedHealth Group is a healthcare and well-being company that’s dedicated to improving the health outcomes of millions around the world. We are comprised of

Title: Cybersecurity Analyst - Hybrid in MN Job Description: Requisition number: 2357994 Job category: Technology Primary location: Eden Prairie, MN Overtime status: Exempt travel" style="font-size:1rem !important">Travel: No Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best.Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale.Join us to start Caring. Connecting. Growing together. The Insider Risk Analyst is responsible for detecting, analyzing, and investigating potential insider‑driven risks to UnitedHealth Group's people, data, and systems. This role supports the Insider Risk Program by monitoring user activity, identifying anomalous or concerning behavior, conducting investigations, and partnering with cross‑functional stakeholders to mitigate risk while ensuring privacy, legal, and policy compliance. The analyst will leverage technical data sources, behavioral indicators, and investigative techniques to assess risk, support casework, and contribute to the continuous improvement of insider risk detection and response capabilities. If you reside in Minnesota, you'll enjoy the flexibility of a hybrid-remote position* as you take on some tough challenges. This position follows a hybrid schedule with four in-office days per week. Primary Responsibilities Insider Risk Detection & Analysis - Monitor and analyze user activity, system logs, and alerts to identify potential insider risk indicators, including data exfiltration, misuse of access, policy violations, or negligent behavior. - Perform analytical triage of insider risk alerts generated from enterprise security tools (e.g., SIEM, DLP, endpoint, identity, and email systems). - Establish baseline user behavior and identify deviations that may indicate insider risk activity. Investigations & Case Management - Conduct insider risk investigations by collecting, correlating, and analyzing data from multiple technical and non‑technical sources. - Document investigative findings, timelines, and conclusions in accordance with Insider Risk Program procedures and records‑retention requirements. - Prepare clear, concise investigative summaries and risk assessments for leadership and stakeholders. Technical & Forensic Support - Analyze logs, email activity, file access, web activity, and authentication events to support investigations. - Assist with digital forensic data collection and analysis in support of insider risk cases, as appropriate. - Develop, maintain, and refine queries, dashboards, and analytical workflows to improve detection efficiency and investigative quality. Cross‑Functional Collaboration - Partner with HR, Legal, Compliance, Employee Relations, Privacy, and Information Security teams during insider risk reviews and investigations. - Support escalation and coordination with Enterprise Information Security for incidents requiring broader security response. - Participate in insider risk working groups and contribute to program governance activities. Program & Process Improvement - Contribute to the development and enhancement of insider risk policies, procedures, and standard operating processes. - Assist in defining insider risk indicators, metrics, and reporting to support program maturity. - Support audits, assessments, and program evaluations related to insider risk management. You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear directions on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - Bachelor's degree in Cybersecurity, Information Security, Computer Science, Criminal Justice, or a related field - 3+ years of experience in cybersecurity - 3+ years of experience in security analysis, investigations, insider risk, threat analysis, or digital forensics - 2+ years of experience with working knowledge of security logs, user activity monitoring, and investigative techniques - 2+ years of experience of documenting findings clearly and communicate effectively with both technical and non‑technical audiences Preferred Qualifications: - Experience supporting an insider risk, fraud, compliance, or digital forensics program - Hands‑on experience with SIEM platforms (e.g., Splunk, Sentinel), DLP tools, endpoint security, or identity monitoring - Familiarity with insider risk frameworks and best practices (e.g., CERT Insider Threat, NIST CSF) - Experience collaborating with HR, Legal, Privacy, or Employee Relations teams - Knowledge of privacy, data protection, and employee monitoring considerations in a regulated environment Soft Skills: - Strong analytical and critical‑thinking skills with the ability to assess risk objectively - Demonstrated ability to handle sensitive information with discretion and professionalism Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $72,800 - $130,000 annually based on full-time employment. We comply with all minimum wage laws as applicable. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location, and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug - free workplace. Candidates are required to pass a drug test before beginning employment. #RPO #YELLOW

Minnesota
$72.8K - $130K / year

Senior Cybersecurity Analyst

UnitedHealth Group

UnitedHealth Group is a healthcare and well-being company that’s dedicated to improving the health outcomes of millions around the world. We are comprised of

Senior Cybersecurity Analyst Requisition number: 2361457 Job category: Technology Primary location: Eden Prairie, MN Overtime status: Exempt Travel: Yes, 10 % of the Time Job Description: Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start Caring. Connecting. Growing together. You'll enjoy the flexibility to work remotely * from anywhere within the U.S. as you take on some tough challenges. For all hires in the Minneapolis or Washington, D.C. area, you will be required to work in the office a minimum of four days per week. Primary Responsibilities: - Platform & Domain Expertise - Demonstrate sustained, hands-on experience operating enterprise asset intelligence platforms - Apply platform capabilities to support enterprise objectives related to asset visibility, risk awareness, and data reliability - Understand how asset intelligence data is generated, normalized, and interpreted across large, complex network environments - Networking Knowledge & Application- - Possess a solid understanding of enterprise networking concepts, architectures, and device communication patterns - Apply knowledge of networking fundamentals (e.g., IP addressing, routing, switching, segmentation, and name resolution) to support accurate asset discovery and classification - Demonstrate the ability to interpret network based signals and telemetry to inform asset identification and behavioral understanding - Asset Discovery & Data Quality - Support enterprise asset discovery efforts by validating completeness, accuracy, and consistency of discovered assets - Identify and escalate data quality issues such as duplication, misclassification, incomplete attribution, or stale records - Contribute to ongoing initiatives focused on improving trust in enterprise asset data used for security, infrastructure, and operational decision making - Integration Awareness & Cross Functional Support - Understand how asset intelligence platforms integrate with broader enterprise systems and processes - Collaborate effectively with network, infrastructure, cybersecurity, and platform teams to align asset data with business and operational needs - Communicate technical findings clearly and professionally to stakeholders with varying levels of technical expertise - Operational Execution & Problem Solving - Apply structured analysis to investigate asset visibility gaps, discovery limitations, and data discrepancies - Support operational processes through consistent execution, documentation, and adherence to established standards - Demonstrate sound judgment when working within regulated, security sensitive enterprise environments - Documentation, Governance & Risk Awareness - Produce clear, accurate documentation to support operational transparency, governance, and audit readiness - Contribute to standards, guidelines, and best practices related to asset discovery and network visibility - Support risk management and compliance activities by providing fact based, defensible asset intelligence inputs - Professional Effectiveness - Demonstrate strong analytical thinking, attention to detail, and accountability in execution - Operate effectively both independently and as part of cross functional teams - Align day to day activities with broader enterprise objectives and organizational priorities The role will require the following Functional Competencies related to ARMIS Network Asset Intelligence : - ARMIS Platform Expertise - Demonstrated hands-on experience administering and operating the ARMIS Asset Intelligence Platform in a large, complex enterprise environment - Strong understanding of ARMIS device discovery methods, data ingestion sources, and telemetry interpretation - Ability to analyze ARMIS asset records for accuracy, completeness, and consistency across network, IT, and security domains - Experience supporting ARMIS use cases related to asset visibility, unmanaged device identification, and exposure analysis - Enterprise Networking Fundamentals - Solid understanding of enterprise network architectures, including LAN, WAN, WLAN, and data center environments - Proficiency with core networking concepts such as TCP/IP, VLANs, routing, switching, DNS, DHCP, and NAT - Ability to interpret network traffic patterns and device behavior to support accurate asset classification and discovery - Experience working with network-connected devices including switches, routers, firewalls, wireless controllers, IoT, and OT systems - Asset Discovery & Data Quality Management - Ability to validate discovered assets against known inventories and enterprise data sources - Skilled in identifying gaps, duplicates, misclassifications, and stale records within ARMIS datasets - Experience supporting data quality initiatives focused on improving asset coverage, accuracy, and trustworthiness - Strong attention to detail when reviewing asset attributes, ownership, site assignment, and integration mappings - Integration & Cross Tool Collaboration - Experience working alongside network, infrastructure, security, and platform teams to align ARMIS outputs with enterprise needs - Understanding of how ARMIS integrates with complementary tools (e.g., CMDBs, vulnerability scanners, network monitoring platforms) - Ability to communicate technical findings clearly to both technical and non technical stakeholders - Proven capability to support cross functional initiatives involving asset intelligence and risk visibility - Operational Support & Troubleshooting - Ability to troubleshoot ARMIS discovery issues, data discrepancies, and network visibility gaps - Experience analyzing root causes related to network configuration, sensor coverage, or integration limitations - Capable of supporting operational runbooks, standard operating procedures, and continuous improvement efforts - Comfortable working in regulated, security conscious enterprise environments with defined controls and processes - Documentation & Governance Support - Ability to document findings, assumptions, and outcomes in a clear and professional manner - Experience contributing to standards, guidelines, and best practices related to asset discovery and network visibility - Supports audit, risk, and compliance inquiries by providing fact based, defensible ARMIS insights - Professional & Analytical Skills - Solid analytical mindset with the ability to interpret complex technical data and draw actionable conclusions - Demonstrates accountability, consistency, and discipline when handling enterprise asset intelligence - Effective collaborator who can operate independently while aligning with broader program objectives You'll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in. Required Qualifications: - Associate's degree - 3+ years of hands-on experience using ARMIS in an enterprise production environment - 3+ years of experience working with asset discovery, inventory, or visibility data in large, complex environments Preferred Qualifications: - Experience supporting asset intelligence or data quality initiatives at enterprise scale - Familiarity with enterprise governance, audit, or risk management processes related to asset data - Proven collaboration with network, infrastructure, or cybersecurity teams - Solid foundational knowledge of enterprise networking concepts and network connected devices - Demonstrated ability to analyze technical data and produce clear, accurate documentation - Proven ability to operate effectively in a regulated, security conscious enterprise organization *All Telecommuters will be required to adhere to UnitedHealth Group's Telecommuter Policy. Pay is based on several factors including but not limited to local labor markets, education, work experience, certifications, etc. In addition to your salary, we offer benefits such as, a comprehensive benefits package, incentive and recognition programs, equity stock purchase and 401k contribution (all benefits are subject to eligibility requirements). No matter where or when you begin a career with us, you'll find a far-reaching choice of benefits and incentives. The salary for this role will range from $91,700 - $163,700 annually based on full-time employment. We comply with all minimum wage laws as applicable. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone-of every race, gender, sexuality, age, location, and income-deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups, and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission. UnitedHealth Group is an Equal Employment Opportunity employer under applicable law and qualified applicants will receive consideration for employment without regard to race, national origin, religion, age, color, sex, sexual orientation, gender identity, disability, or protected veteran status, or any other characteristic protected by local, state, or federal laws, rules, or regulations. UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.

Minnesota + 1 moreAll locations: Minnesota | District Of Columbia
$91.7K - $163.7K / year
TEKsystems logo

AI Security Risk Analyst

TEKsystems

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia.

ContractRemoteTeam 10,001H1B No Sponsor

Role Description Our healthcare client is looking for an AI Security Risk Analyst who will be doing security risk reviews for AI adoption. Will be part of the Information Security and Risk Management team and will work at an enterprise level to ensure a consistent delivery of information security and risk management services. This individual will act as a subject matter expert to the assigned business units on matters regarding information security and compliance with HIPAA, Joint Commission, DSRIP, COBIT, and state privacy laws. Qualifications - 5+ years of experience in AI Risk assessments and analyzing risks. - 5+ years of experience in AI security review. - A minimum of ten years of IT experience, with at least 7 years dedicated to IT/Cyber Security, including Solution Design and risk management. Requirements - Background in AI security reviews and knowledge of AI adaptation risks. - Ability to maintain and enforce security risk management frameworks and methodologies. - Experience drafting risk acceptances, exceptions, and tracking remediation items within GRC tools. - Ability to turn business-level risk requirements into specific technical control specifications for engineering teams/business units. Benefits - Medical, dental & vision - Critical Illness, Accident, and Hospital - 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available - Life Insurance (Voluntary Life & AD&D for the employee and dependents) - Short and long-term disability - Health Spending Account (HSA) - Transportation benefits - Employee Assistance Program - Time Off/Leave (PTO, Vacation or Sick Leave) Company Description We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia.

United States
$70 - $85 / hour
Job Closed
Graham Packaging Company logo

OT Cybersecurity Analyst

Graham Packaging Company

Graham Packaging is a leading manufacturer of sustainable packaging. They’re the kind of people you want as your friends and neighbors as well as your partners and suppliers. By building strong relationships and creating value for our customers, our employees embody the innovative spirit that’s inherent to Graham.

Full TimeRemoteTeam 5,001-10,000

Role Description The OT Cyber Security Analyst is a critical member of the Cybersecurity and Operational Technology (OT) team, responsible for securing industrial control systems and manufacturing environments. This role focuses on: - OT security monitoring, threat detection and incident response - Vulnerability management - Secure implementation of cybersecurity controls across plant operations The analyst will leverage hands-on experience in manufacturing environments, working directly with: - PLCs - Embedded systems - Industrial networks - OT-specific security platforms such as Dragos - Tools including CrowdStrike and Linux-based systems This role requires a practitioner who can bridge IT and OT domains, ensuring the availability, integrity, and security of production systems without disrupting operations. This is a remote position with travel required to manufacturing facilities primarily in North America, with occasional travel to Europe and South America. Responsibilities - OT Security Monitoring & Incident Response: Monitor industrial networks, control systems (SCADA, PLCs), and plant environments for cyber threats and anomalies. Investigate alerts generated by tools such as Dragos and CrowdStrike, and coordinate incident response actions including containment and recovery with plant operations teams. - Threat Detection & OT Risk Analysis: Identify threats targeting industrial control systems by analyzing OT network traffic, device behavior, and threat intelligence. Perform root cause analysis of incidents impacting manufacturing environments. - OT Vulnerability Management: Assess vulnerabilities across OT assets including PLCs, HMIs, and embedded systems. Partner with engineering and plant teams to prioritize remediation activities that minimize production risk. - Industrial Control Systems (ICS) Security: Support the design, implementation, and maintenance of secure architectures for PLCs, DCS, and embedded systems. Ensure adherence to segmentation, least privilege access, and secure communication protocols within plant environments. - Tool Administration & Optimization: Deploy, maintain, and optimize OT and endpoint security platforms including Dragos, CrowdStrike, and Linux-based monitoring tools. Tune detection rules and alerts to reduce false positives and improve threat visibility. - Network Segmentation & Plant Security Controls: Assist in implementing network segmentation strategies between IT and OT environments. Validate firewall rules, remote access controls, and secure vendor connectivity into plant networks. - Collaboration with Manufacturing & Engineering Teams: Work closely with plant managers, controls engineers, and IT teams to integrate cybersecurity controls into manufacturing processes without impacting uptime or throughput. - Security Policy, Compliance & Standards: Ensure OT security practices align with frameworks such as NIST Cybersecurity Framework (CSF), ISA/IEC 62443, and internal company cybersecurity policies. Support audits and risk assessments specific to manufacturing operations. - Continuous Improvement & Threat Intelligence: Stay current on emerging OT threats and vulnerabilities. Contribute to improving the organization’s overall OT security posture through new controls, tools, and best practices. Qualifications - Education: Bachelor’s degree in Cybersecurity, Information Technology, Engineering, or related field preferred (or equivalent experience) - Experience: - 3–7 years of experience in cybersecurity, with direct experience in OT/ICS environments within manufacturing required - Proven experience implementing cybersecurity controls in industrial or production environments - Hands-on experience supporting plant operations or working with controls/automation teams is strongly preferred - Technical Skills: - Strong understanding of OT networks, industrial protocols (Modbus, OPC, Ethernet/IP), and control systems architecture - Hands-on experience with PLCs and embedded systems - Dragos or similar OT security platforms - CrowdStrike or equivalent endpoint detection tools - Linux environments and scripting - Familiarity with network segmentation, firewalls, and remote access in OT environments - Understanding of IT/OT convergence risks and mitigation strategies - Certifications (Preferred): - GICSP (Global Industrial Cyber Security Professional) - CISSP, CISM, or equivalent - Vendor-specific certifications (CrowdStrike, Dragos) a plus - Skills: - Strong analytical and troubleshooting skills in complex operational environments - Ability to communicate effectively with both technical teams and plant operations personnel - Ability to balance security requirements with operational uptime and safety priorities - Self-driven with ability to work independently in a remote environment Work Environment & Travel Requirements - Remote-based role with expected travel: - North America manufacturing sites: primary travel (approximately 25–40%) - International travel (Europe & South America): occasional, project-based - Must be comfortable working in industrial plant environments, including production floors when required Compensation Statement The standard compensation for this role is $128,400 - $192,600. Salary offers will be determined based on final candidate qualifications, experience, skillset, and other relevant factors. Benefits - Medical, dental, vision and basic life insurance - Enrollment in the company’s 401K Employee Saving Plan - Participation in the Employee Wellness Program - Paid time off in accordance with company policy and state law requirements EEO Disclaimer Graham Packaging is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, sex (including pregnancy), sexual orientation, religion, creed, age, national origin, physical or mental disability, gender identity and/or expression, marital status, veteran status or other characteristics protected by law.

Northern America + 2 moreAll locations: Northern America | Europe | South America
$128.4K - $192.6K / year