CrawlJobs Logo

Security Analyst Detect & Respond

arrive.com Logo

Arrive

Location Icon

Location:
Poland , Łódź

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Become a Security Guardian! We are seeking a highly motivated Security Analyst (4+ years experience) to join our Detect & Respond team. Reporting to the Detect & Respond Lead, you will proactively monitor, investigate, and respond to advanced threats while partnering with engineering and infrastructure teams to reduce risk exposure through effective threat detection improvements. This role requires a keen eye for detail, strong analytical rigor, and the ability to work effectively under pressure.

Job Responsibility:

  • Investigate and analyze security alerts from SIEM, EDR, Dark Web Monitoring & Cloud Security Tools
  • Provide comprehensive support for incident response activities, including containment, eradication, and recovery
  • Perform thorough root cause analysis and document incident findings
  • Develop and refine incident response playbooks
  • Work effectively and collaboratively with our Managed Security Service Provider (MSSP)
  • Conduct hypothesis-driven threat hunting across endpoint, network, and cloud environments
  • Leverage EDR tooling to detect lateral movement and suspicious activity
  • Stay continuously up-to-date on emerging threat intelligence and attacker behaviors
  • Managing the incident from the moment it is escalated by Tier 1 until final closure, ensuring adherence to established frameworks like the NIST or SANS incident response lifecycles
  • Acting as the primary technical point of contact during an active incident. This involves directing IT operations, network engineers, or system administrators on exactly what systems need to be isolated, patched, or restored
  • Participating in or leading post-mortem meetings after a severe incident is resolved. The Level 2 analyst is expected to identify gaps in current defenses, suggest SIEM/EDR rule tuning, and recommend process improvements to prevent a recurrence
  • Support ISO 27001, PCI DSS, and audit-related evidence gathering requirements
  • Maintain detailed documentation of investigations, procedures, and remediation
  • Contribute to improving SOC processes and runbooks

Requirements:

  • 4+ years of hands-on experience in a Security Analyst, SOC, or Incident Response role
  • Strong experience with SIEM platforms (e.g., Splunk, Sentinel, Crowdstrike, Rapid7)
  • Hands-on experience with EDR tools (e.g., CrowdStrike, Defender, SentinelOne)
  • Strong understanding of networking fundamentals, security principles, and common attack vectors
  • Excellent analytical, communication, and collaboration skills, with the ability to translate technical findings into business-impact language

Nice to have:

  • Experience working in hybrid/cloud environments (AWS, Azure, or GCP)
  • Experience in fintech, SaaS, or product-based organizations
  • Exposure to cloud-native security tools (Wiz, Orca, Prisma, etc.)
  • Relevant industry certifications are welcome, but not required (such as Security+, CySA+, GCIH, CCSP, or AWS Security Specialty)

Additional Information:

Job Posted:
March 25, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Arrive - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Security Analyst Detect & Respond

Cyber Security-Fraud Analyst

The L2 Support Fraud Detection Senior Analyst is a pivotal team member responsib...
Location
Location
India , Chennai
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Tools: Octoflow, Mosaic
  • conduct investigations and reporting using Octoflow and Mosaic platforms
  • provide recommendations based on analytics derived from these tools
  • support secure integration of APIs and web services within fraud detection platforms
  • liaise with developers to validate and enhance security features in applications
  • analyse and correlate logs using SIEM solutions to identify and remediate suspicious activity
  • respond to real-time alerts and participate in threat hunting operations
  • integrate threat intelligence feeds into operational systems
  • regularly update detection mechanisms in response to emerging risks
  • lead and document the resolution of escalated fraud incidents
Job Responsibility
Job Responsibility
  • Conduct investigations and reporting using Octoflow and Mosaic platforms
  • provide recommendations based on analytics derived from these tools
  • support secure integration of APIs and web services within fraud detection platforms
  • liaise with developers to validate and enhance security features in applications
  • analyse and correlate logs using SIEM solutions to identify and remediate suspicious activity
  • respond to real-time alerts and participate in threat hunting operations
  • integrate threat intelligence feeds into operational systems
  • regularly update detection mechanisms in response to emerging risks
  • lead and document the resolution of escalated fraud incidents
  • collaborate with cross-functional teams for swift containment, investigation, and recovery
What we offer
What we offer
  • Inclusive and respectful work environment
  • positions open to people with disabilities.
  • Fulltime
Read More
Arrow Right

Security Analyst

WiseTech Global is a world-leading software company building software for the gl...
Location
Location
United States , Chicago
Salary
Salary:
75000.00 - 95000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Min 6 years' experience in a similar Cyber Security role
  • Working knowledge of security frameworks, policies and standards such as ISO27001, PCI DSS, Essential Eight, NIST CSF, and MITRE ATT&CK and applying them into operational context
  • Experience with cloud-based services and technologies
  • Ability to detect and defend against commonly-used attack tactics, techniques and procedures (TTPs) against known attack surfaces such as identity, email, endpoint, network and cloud
  • Passionate about growth and learning
  • A background prior to security in IT support/infrastructure would be advantageous (e.g. servers, networking protocols, security controls, O365/Azure)
  • First-hand experience with SIEM platforms, enterprise intrusion prevention systems, endpoint detection and response tools, and other security products
  • Able to communicate effectively in verbal and written format with technical and non-technical audiences
  • Ability to effectively plan, schedule and adapt to changing priorities, tasks and requirements to meet deadlines
  • Ability to work under pressure and at times with limited supervision
Job Responsibility
Job Responsibility
  • Analyze, review and respond to security alerts, events including triaging and advising on mitigation activities
  • Investigate security incidents and breaches to identify root causes and recommend improvements
  • Engage in testing and monitoring the performance of systems and services, making sure that security requirements are met
  • Maintain strong working relationships, work collaboratively, and share ideas, knowledge and experience with team members as required
  • Assist in continuously updating the company’s security incident, data breach response and disaster recovery plans
  • Undertake threat detection practices
  • Undertake security hardening support practices with teams
  • Vulnerability management to analyze findings from vulnerability reports, assist with risk assessments on the vulnerabilities and coordinate remediation and patching activities with system owners
  • Taking on a wide variety of security operations tasks on an as needed basis
Read More
Arrow Right

Security Operations Analyst

As a Security Operations Analyst within our Information Security Team you will p...
Location
Location
Portugal , Lisbon
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrable deep experience of design and build of systems integration, ideally in a security operations environment
  • strong technical and IT operations background, with strong experience
  • experience of working with Splunk or similar SIEM platforms, Service Desk systems and security monitoring tools desirable with experience in designing and developing these platforms
  • familiarity and experience with Windows, macOS, Linux, and Unix operating systems
  • computer networking and cloud technology fundamentals
  • understanding of Active Directory, LDAP, IDaaS (AAD)
  • rudimentary security knowledge and awareness of firewalls, proxies, antivirus, and IPS/IDS concepts
  • experience scripting in Python or PowerShell
  • experience using Microsoft Excel and Word
  • excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Promote a security first culture at TUI
  • work with resolver teams to ensure that information security events and incidents are automatically generated, appropriately addressed and closed in local ticketing systems and ensure reporting on key performance indicators and service levels
  • adopt a pragmatic and ‘can-do’ attitude in everything you do, partnering with your colleagues across the TUI businesses and IT functions worldwide
  • build strong working relationships and influence others to do the right thing to Protect our Smile
  • monitor for alerts from security tools, including, but not limited to, security analytics platforms, automation tools, ticket management systems, user-reported alerts, and others
  • triage security alerts, including initial analysis to determine the validity of alerts and gather additional context
  • use network and host security tooling to perform additional investigation
  • work the full incident lifecycle from detection, investigation, response, to remediation for security alerts
  • contribute to the further development, maintenance, and standardization of SOC processes, policies, and procedures
  • work with other IT/security teams to identify areas for improvement around detection, investigation, and response
What we offer
What we offer
  • Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support, and more
  • flexible working: Work is something you do, not somewhere you go. We encourage a healthy work-life balance and offer hybrid or remote working models
  • opportunities to upskill, reskill and grow your career
  • access the TUI Tech Learning Hub to level-up and reach your ambitions
  • participate in our tech communities and collaborate on global projects and teams
  • get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community.
  • Fulltime
Read More
Arrow Right

Security Analyst

We are seeking a proactive and detail-oriented Security Analyst (Tier 1-2) for a...
Location
Location
United States , Charlotte
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1-3 years of experience in a security analyst or related IT security role
  • strong understanding of server environments and security event workflows
  • experience with Proofpoint, Exchange, and sandbox tools
  • familiarity with security investigation techniques and threat analysis
  • ability to manage and prioritize a high volume of alerts (approx. 50/week)
  • excellent written and verbal communication skills
  • self-starter with a keen attention to detail
Job Responsibility
Job Responsibility
  • perform Tier 1-2 triage and analysis of security incidents
  • monitor, investigate, and respond to alerts using a variety of tools and technologies
  • utilize Proofpoint and sandboxing tools for email threat detection and analysis
  • work within Exchange to identify and mitigate potential email threats
  • analyze logs and events across various systems for suspicious activity
  • escalate complex incidents and assist with remediation efforts
  • collaborate with senior analysts and other IT teams to ensure timely resolution
  • document findings and contribute to incident response reports
What we offer
What we offer
  • medical insurance
  • vision insurance
  • dental insurance
  • life insurance
  • disability insurance
  • enrollment in company 401(k) plan
  • Fulltime
Read More
Arrow Right

Security Operations Analyst

As a Security Operations Analyst within our Information Security Team you will p...
Location
Location
Portugal , Lisbon; Oporto; Barcelona; Madrid; Flexible
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrable deep experience of design and build of systems integration, ideally in a security operations environment
  • Strong technical and IT operations background
  • Experience of working with Splunk or similar SIEM platforms, Service Desk systems and security monitoring tools
  • Familiarity and experience with Windows, macOS, Linux, and Unix operating systems
  • Computer networking and cloud technology fundamentals
  • Understanding of Active Directory, LDAP, IDaaS (AAD)
  • Rudimentary security knowledge and awareness of firewalls, proxies, antivirus, and IPS/IDS concepts
  • Experience scripting in Python or PowerShell
  • Experience using Microsoft Excel and Word
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Monitor for alerts from security tools
  • Triage security alerts
  • Use network and host security tooling to perform additional investigation
  • Work the full incident lifecycle from detection, investigation, response, to remediation for security alerts
  • Contribute to the further development, maintenance, and standardization of SOC processes, policies, and procedures
  • Work with other IT/security teams to identify areas for improvement around detection, investigation, and response
  • Research common and topical commodity and APT-based malware tactics and techniques in preparation for future attacks
  • Provide feedback on detection rules to help tune security tools and minimize false positives
  • Participate in SOC working groups and sub-teams to help generate and execute on new ideas for content, technology advancements, and proactive defence improvement projects
What we offer
What we offer
  • Attractive remuneration
  • Bonus opportunity
  • Exclusive travel perks & discounts
  • Extensive health & wellbeing support
  • Flexible working
  • Opportunities to upskill, reskill and grow your career
  • Access the TUI Tech Learning Hub
  • Participate in tech communities and collaborate on global projects and teams
  • Get involved with local charity and sustainability initiatives
  • Fulltime
Read More
Arrow Right

Security Operations Analyst

As a Security Operations Analyst within our Information Security Team you will p...
Location
Location
Portugal , Lisbon; Oporto; Barcelona; Madrid; Flexible
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrable deep experience of design and build of systems integration, ideally in a security operations environment
  • Strong technical and IT operations background
  • Experience with Splunk or similar SIEM platforms, Service Desk systems, and security monitoring tools
  • Familiarity with Windows, macOS, Linux, and Unix operating systems
  • Computer networking and cloud technology fundamentals
  • Understanding of Active Directory, LDAP, IDaaS (AAD)
  • Rudimentary security knowledge of firewalls, proxies, antivirus, and IPS/IDS concepts
  • Experience scripting in Python or PowerShell
  • Experience using Microsoft Excel and Word
  • Excellent written and verbal communication skills
Job Responsibility
Job Responsibility
  • Monitor for alerts from security tools
  • Triage security alerts
  • Use network and host security tooling to perform additional investigation
  • Work the full incident lifecycle from detection, investigation, response, to remediation for security alerts
  • Contribute to the further development, maintenance, and standardization of SOC processes, policies, and procedures
  • Work with other IT/security teams to identify areas for improvement around detection, investigation, and response
  • Research common and topical commodity and APT-based malware tactics and techniques
  • Provide feedback on detection rules to help tune security tools and minimize false positives
  • Participate in SOC working groups and sub-teams to help generate and execute on new ideas for content, technology advancements, and proactive defence improvement projects
What we offer
What we offer
  • Attractive remuneration
  • Bonus opportunity
  • Exclusive travel perks & discounts
  • Extensive health & wellbeing support
  • Flexible working models
  • Opportunities to upskill, reskill and grow your career
  • Access to TUI Tech Learning Hub
  • Participation in tech communities and collaboration on global projects and teams
  • Involvement in local charity and sustainability initiatives
  • Fulltime
Read More
Arrow Right

Information Security Analyst

The Information Security Analyst will play a key role in safeguarding the organi...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
oceanbluecorp.com Logo
Ocean Blue Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security, Cybersecurity, IT, or related field
  • or equivalent 1 year
  • or Preference will be given to candidates with relevant State of Georgia Experience
  • Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc.
  • Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA)
  • Experience with incident response, vulnerability management, and risk assessments
  • Strong analytical, documentation, and communication skills
Job Responsibility
Job Responsibility
  • Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management)
  • Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security
  • Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks
  • Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings
  • Support patch management and configuration management processes to reduce the attack surface
  • Deliver metrics and risk posture updates to leadership
  • Maintain and update System Security Plans (SSPs) to document the implementation of security controls
  • Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking
  • Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5)
  • Triage, analyze, and document security incidents across enterprise systems
Read More
Arrow Right

Security & Privacy Analyst

The Security & Privacy Analyst will play a key role in protecting Spectrum.Life’...
Location
Location
United Kingdom
Salary
Salary:
Not provided
spectrum.life Logo
Spectrum Life
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in information security, privacy, compliance, or a related field
  • Strong understanding of GDPR, data protection principles, and privacy best practices
  • Familiarity with security operations, vulnerability management, and incident response
  • Experience with security tools (e.g., SIEM, endpoint protection, logging platforms)
  • Ability to interpret risks and communicate them clearly to technical and non-technical audiences
  • Strong documentation, analytical, and problem-solving skills
  • Excellent attention to detail and commitment to quality
  • Experience in health-tech, clinical platforms, or handling sensitive health data
  • Certifications such as ISO 27001 Lead Implementer/Auditor, CompTIA Security+, CISSP, CIPP/E, or equivalent
  • Experience supporting audits or managing compliance frameworks
Job Responsibility
Job Responsibility
  • Monitor, assess, and respond to security alerts, incidents, and vulnerabilities across the technology environment
  • Support security operations activities including log analysis, threat detection, endpoint security, and access control management
  • Conduct regular vulnerability assessments and coordinate remediation with relevant teams
  • Assist in maintaining and improving security tools, controls, and frameworks (e.g., SIEM, IAM, MDM, KnowBe4, encryption standards)
  • Support third-party security reviews and due diligence assessments
  • Participate in business continuity and disaster recovery planning and testing
  • Support GDPR and other applicable privacy frameworks (e.g., ePrivacy, UK GDPR, HIPAA-aligned practices for clinical contexts)
  • Conduct Data Protection Impact Assessments (DPIAs) and Legitimate Interest Assessments (LIAs)
  • Assist in maintaining Records of Processing Activities (RoPA)
  • Review new product features and vendor integrations for compliance with privacy-by-design and security-by-design principles
What we offer
What we offer
  • Full time permanent contract
  • Competitive salary (Dependent on experience)
  • In-office, remote or hybrid working options
  • 25 days annual leave
  • 24/7 EAP and a wide range of health and wellbeing supports
  • Extensive list of employee perks and benefits
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy