The world’s best IT teams and MSPs use NinjaOne.
SOC Analyst
Location
Brazil + 2 moreAll locations: Brazil | Colombia | Mexico
Posted
27 days ago
Salary
0
Seniority
Mid Level
Job Description
SOC Analyst
NinjaOne
Role Description The Tier 1 Security Operations Center (SOC) Analyst plays a critical role within NinjaOne’s Information Security organization, supporting the detection and response to security threats across the company. This is a hands-on, operations-focused position responsible for monitoring, triaging, and escalating security alerts across cloud, endpoint, identity, and SaaS environments. You will work closely with senior analysts and incident responders to investigate alerts, document findings, and support ongoing security operations. This role is ideal for early-career security professionals looking to build practical experience in a modern, cloud-centric SOC while developing strong analytical and investigative skills. Qualifications - Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent practical experience) - 1–3 years of experience in a SOC, NOC, IT security, or related technical role - Basic understanding of security monitoring and alert triage - Foundational knowledge of networking (TCP/IP, DNS, HTTP/S) - Familiarity with Windows and/or macOS operating systems - Understanding of common attack techniques (phishing, brute force, malware) - Strong written English skills for documentation and escalation - Ability to work effectively in a remote, distributed team environment - Willingness to work scheduled shifts aligned with U.S. business hours (including occasional weekends or on-call) Requirements - Monitor security alerts and events across SIEM, EDR, cloud, email, and identity platforms - Perform initial triage to assess alert severity, scope, and potential impact - Differentiating true positives from false positives using playbooks and investigative techniques - Escalate confirmed or high-risk incidents to Tier 2/DFIR teams with clear, structured documentation - Collect and preserve artifacts (logs, indicators, timelines) to support investigations - Follow established runbooks, escalation paths, and SLAs - Maintain accurate case notes and ticket updates in the case management system - Identify recurring alert patterns and contribute to detection tuning and process improvements - Maintain awareness of common threat vectors, including phishing, malware, credential abuse, and cloud misconfigurations - Participate in shift handoffs to ensure continuity of investigations - Other duties as needed Benefits - Flexible working hours with home office options - Opportunities for personal growth with one of the fastest growing companies globally - Access to a renowned training platform for skill development - Competitive compensation - Collaboration with an amazing international workforce Company Description NinjaOne automates the hardest parts of IT to deliver visibility, security, and control over all endpoints for more than 40,000 customers. The NinjaOne automated endpoint management platform is proven to increase productivity, reduce security risk, and lower costs for IT teams and managed service providers. NinjaOne is obsessed with customer success and provides free and unlimited onboarding, training, and support. NinjaOne is #1 on G2 in endpoint management, patch management, remote monitoring and management, and mobile device management.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Oracle Security Analyst
Cohu, Inc.We deliver leading-edge solutions to enable a smarter, safer, and more connected future.
Role Description The Oracle Security Analyst position provides technical, functional support and security for Oracle Fusion Cloud and related applications. This is a remote-work position and will be based in the US in one of these states: Washington, Oregon, Texas or Arizona. - Manage Oracle access request tickets (Oracle Fusion ERP, HCM, SCM, CX, OAC, Customer Portal, etc.) to support Oracle access provisioning and deprovisioning. - Troubleshoot and resolve Oracle access (roles and data security) issues and requests. - Maintain Oracle service accounts password database. - Maintain Oracle role master and global process owner documents. - Support and maintain Oracle BI report folder permissions. - Support Oracle user access requirements for assigned projects (integrations, new module implementations, etc.). - Interact with users and business owners to understand and educate them regarding access requests and access issues. - Facilitate knowledge transfer and sharing within the Oracle security team. - Manage all consultant user access/account requests. - Support Oracle access related requirements as part of our environment refresh process. - Support Sox requirements and controls for Oracle access related functions and ensure no deficiencies during a Sox Audit related to access. Qualifications - A minimum of 5 years of experience in IT services or other application/ERP support, with at least three years of experience leading an IT service and support team for a global company. - Interaction with a global team is preferred. - Experience and proficiency with customizing Oracle Fusion roles. - Experience and proficiency with Oracle Fusion Security Console, Oracle IAM, Oracle IDCS. - Ability to lead geographically dispersed teams and team members. - Experience building and developing processes. - Excellent communication, written and verbal, and interpersonal skills. - Strong analytical skills. - Proven troubleshooting skills. - Experience streamlining, implementing, and globalizing policies and procedures. - Experience with Sox audits as it relates to application security. - Knowledge of Oracle Fusion ERP, SCM, CX, HCM modules/processes a plus. Education & Training - Bachelor’s degree in IT field or equivalent combination of education, training, and experience. Job Conditions/Physical Demands - Work from home office environment. - Ability to sit for prolonged period at desk, use computer keyboard; minimal exertion. Protective Devices Required - In designated areas. Hiring Salary Range - $85-$105K
Security Analyst
Metro Vein CentersSpecialized provider of minimally-invasive medical and cosmetic treatments for varicose veins and spider veins.
• Monitor security alerts and events across the environment; investigate, triage, and respond to incidents in a timely manner • Administer and maintain Google Workspace security controls, including DLP policies, Gmail security settings, Drive sharing policies, and audit log review • Manage endpoint detection and response operations • Oversee device compliance policies, conditional access rules, and endpoint security baselines • Administer and enforce MFA policies and password complexity standards across all user populations • Conduct quarterly role-based access audits across critical systems including Athena, Luma, Google Workspace, and BigQuery • Own and maintain least-privilege access model across enterprise applications and identity platforms • Manage email security controls including phishing protection, spam filtering, and DMARC/DKIM configuration • Design and execute phishing simulation campaigns; deliver user security awareness training • Support HIPAA security compliance, including contributing to risk assessments, policy updates, and audit readiness • Assist with identity and access management (IAM) administration, including SSO, Google Identity • Collaborate with the network team on ZTNA policy enforcement and Zscaler security configurations • Contribute to incident response plans, disaster recovery documentation, and security runbooks • Track and report on key security KPIs including MFA adoption, device compliance rates, open vulnerabilities, and audit findings • Other related security duties as assigned • Occasional travel for critical issues or growth • Being on call rotation
Telecommunications, Cybersecurity Analyst
AttainX, Inc.SBA Certified 8(a), EDWOSB/WOSB and CMMI L3, ISO 9001:2015 Certified QMS
• Assist with the development and execution of test plans and procedures for telecommunications priority services • Support testing in wireline, wireless, IP, LTE, and emerging 5G environments under senior engineer guidance • Document test results, observations, and issues for review by senior technical staff • Help prepare technical reports and engineering documentation • Participate in meetings and technical discussions with internal and external stakeholders • Assist with Operations, Administration, Maintenance, and Provisioning (OAM&P) documentation and coordination activities • Support review and analysis of proposed carrier implementations and operational processes • Help prepare program documentation, presentations, and technical summaries • Assist with cybersecurity documentation and compliance requirements for telecommunications systems • Support the development and maintenance of security controls and cybersecurity artifacts • Participate in security assessments, vulnerability reviews, and risk documentation activities under supervision • Help maintain Interconnection Security Agreements (ISAs) and ATO-related materials
• Monitor security tools and platforms for suspicious activity and potential threats. • Investigate and triage alerts, respond to incidents, and document findings, root cause, and remediation actions. • Serve as the primary operational interface between customers, MDR providers, and internal teams for security events and escalations. • Coordinate incident response activities across MDR partners and internal teams. • Communicate security incidents, risks, and remediation status to customers. • Participate in incident reviews, RCA discussions, and customer meetings. • Ensure MDR services align with customer SLAs and contractual requirements. • Escalate critical risks and ensure timely resolution across stakeholders. • Perform vulnerability assessments and coordinate remediation activities across environments. • Identify and prioritize risks and recommend mitigation strategies to internal leadership and customers. • Maintain and tune security tools including SIEM, EDR, firewalls, and intrusion detection/prevention systems. • Analyze logs and telemetry to identify threats and improve detection capabilities. • Develop and maintain security operations processes, SOPs, and incident response runbooks to support consistent and scalable service delivery. • Create repeatable workflows for incident detection, escalation, and remediation. • Continuously refine playbooks based on lessons learned and threat intelligence. • Support onboarding of new customers by defining operational procedures. • Partner with Help Desk and Infrastructure teams to build security awareness and operational readiness. • Deliver training on security tools, processes, and escalation procedures. • Enable teams to identify, triage, and escalate security events appropriately. • Provide ongoing guidance to improve cross-team collaboration and response effectiveness. • Support development and enforcement of security policies, standards, and procedures. • Participate in audits and maintain documentation aligned to frameworks such as ISO 27001, NIST, SOC 2, and CMMC. • Stay current with emerging threats, vulnerabilities, and industry trends. • Recommend and implement improvements to strengthen security posture across internal and customer environments.




