Senior Analyst, Cyber

Presidio, Where Teamwork and Innovation Shape the Future 
At Presidio, we’re at the forefront of a global technology revolution, transforming industries through cutting-edge digital solutions and next-generation AI. We empower businesses—and their customers—to achieve more through innovation, automation, and intelligent insights. 

The Role

The Security Operations Centre (SOC) Analyst is responsible for deploying, maintaining, tuning, monitoring, and managing security tools associated with the Security Operations Centre. Serving as Senior Analyst, this role acts as an escalation point for other team members. The Senior Analyst reviews alerts generated by SOC analysts, network and system security devices, security information and event management systems, and additional tools as required. This individual collaborates with other analysts to collect, correlate, and analyse security-relevant data, ensuring prompt and effective responses to threats.

Responsibilities include: 

• Work with security alerts, to perform in-depth analysis and triage of security incident and threat activity
• Participate in incident investigation and response activity
• Regularly evaluate existing security monitoring practices and suggest improvements to SOC processes, procedures, and policies.
• Review and fine tune false positive incidents
• Propose, develop and implement detection use cases
• Participate in on-call rotation for after-hours security incident escalations
• Provide support to other members of the SOC team
• Get alerts and incidents escalation from tier 1 analysts
• Be responsible to manage their time and the assigned tasks
• Regularly and promptly carry out the ticket management tasks
• Stay up to date with emerging security threats
• Communicate effectively with customers, teammates, and management
• Effective performance during high-stakes security incidents or periods of high alert volume
• Monitor the service ticket board and ensure the tickets are managed and responded in line with SLA
• Provide feedback to help automating common recurring tasks
• Identify and leverages emerging threat intelligence (IOCs, updated rules, etc.) to identify affected systems and the scope of the attack
• Create monthly customer reports
• Review vulnerability scans results

Required Skills and Professional Experience

• Requires background in at least 3 of the following domains: ethical hacking, incident response, forensic analysis, security engineering, incident analysis and investigations
• At least 3+ years’ experience in managing working in Security Operations Centre with a Security Incident & Event Management (SIEM)
• Proven experience with SIEM technology, preferably on IBM QRadar and Microsoft Sentinel
• Proven experience with EDR technology, preferably Microsoft Defender and Sophos
• Proven Experience in incident analysis, detection and response
• Experience with network and server OS security tools and protocols
• Experience with security systems like firewalls, IPS/IDS, and web proxies
• Good understanding of Windows and Linux operating systems, and cloud infrastructure
• Relevant security certifications are a plus (e.g. Microsoft SC-200, IBM certified analyst, CompTIA Security+, CEH, etc.)

Your future at Presidio
Joining Presidio means stepping into a culture of trailblazers—thinkers, builders, and collaborators—who push the boundaries of what’s possible. With our expertise in AI-driven analytics, cloud solutions, cybersecurity, and next-gen infrastructure, we enable businesses to stay ahead in an ever-evolving digital world. 

Here, your impact is real. Whether you're harnessing the power of Generative AI, architecting resilient digital ecosystems, or driving data-driven transformation, you’ll be part of a team that is shaping the future. 

Ready to innovate? Let’s redefine what’s next—together. 

About Presidio
At Presidio, speed and quality meet technology and innovation. Presidio is a trusted ally for organizations across industries with a decades-long history of building traditional IT foundations and deep expertise in AI and automation, security, networking, digital transformation, and cloud computing. Presidio fills gaps, removes hurdles, optimizes costs, and reduces risk. Presidio’s expert technical team develops custom applications, provides managed services, enables actionable data insights and builds forward-thinking solutions that drive strategic outcomes for clients globally. For more information, visit www.presidio.com. 

Presidio is committed to hiring the most qualified candidates to join our amazing culture. We aim to attract and hire top talent from all backgrounds, including underrepresented and marginalized communities. We encourage women, people of color, people with disabilities, and veterans to apply for open roles at Presidio. Diversity of skills and thought is a key component to our business success.

Recruitment Agencies, Please Note: Presidio does not accept unsolicited agency resumes/CVs. Do not forward resumes/CVs to our careers email address, Presidio employees or any other means. Presidio is not responsible for any fees related to unsolicited resumes/CVs.

 #LI-DC1