FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.

Security Analyst II
Foresite CybersecuritySecurity Analyst II working remotely to manage escalated security alerts and lead complex investigations in Foresite’s Security Operations Center. Collaborating in a mission-driven partner company to protect organizations.
Tech Stack
Tools & technologiesCyber Security
About the role
Key responsibilities & impact- You will work inside our 24/7 Cyber Fusion Center, handling escalated security alerts, leading complex investigations for our managed customers across Google Security Operations (Chronicle) and our SOAR platform, and serving as a subject matter expert for the broader team.
- Act as the primary point of escalation for our Tier 1 Analysts.
- Investigate incidents end-to-end: Review complex alert context, gather evidence from Chronicle UDM and supporting tools, reach a final disposition, and either close the ticket with a documented rationale or escalate to Tier 3/Incident Response with a clear handoff.
- Optimize investigation playbooks: Follow established playbooks for the detection stack, but actively identify gaps, propose workflow improvements.
- Communicate clearly in tickets: Ensure all tickets are understandable by the next analyst, the customer, or an auditor reading it six months from now.
- Lead communications through the ticketing system on routine and complex investigations, requests for information, and exclusion/suppression requests.
Requirements
What you’ll need- 2–4 years of prior experience in a SOC, incident response, or dedicated cybersecurity role.
- Advanced knowledge of core security concepts: Deep understanding of the cyber kill chain and MITRE ATT&CK framework, common attack vectors (phishing, credential abuse, malware delivery, lateral movement), and hands-on experience with detection, prevention, and response tactics.
- Proficiency with a SIEM: You have hands-on experience navigating SIEM platforms.
- Strong written communication: You will be writing in tickets that customers read. Clear, concise, accurate writing is non-negotiable.
- Attention to detail: False positives and true positives often look nearly identical.
- CompTIA Sec+, CompTIA CySA+, BTL1, or equivalent certification is required within 90 days of hire if not already held.
Benefits
Comp & perks- Robust medical insurance options to keep you and your family healthy.
- We fully provide employer-paid Dental coverage, as well as Short-Term (STD) and Long-Term Disability (LTD).
- You’ll start with 3 weeks of paid vacation, plus additional sick leave and paid company holidays to ensure you have time to recharge.
- Access to world-class training and mentorship.
- Help protect global clients using the latest AI-enhanced security tools and GCP native technologies.
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
CybersecurityIncident InvestigationAlert Context ReviewEvidence GatheringDetection TacticsPrevention TacticsResponse TacticsWorkflow OptimizationTicket DocumentationAttention to Detail
Soft Skills
Strong Written CommunicationClear Communication
Certifications
CompTIA Sec+CompTIA CySA+BTL1