Security Operations - Senior Cybersecurity  Analyst

The Senior Cybersecurity Analyst position will be part of the managed services team in a 24x7x365 Security Operations Center (SOC). The SOC is responsible for detecting network intrusion attempts, investigating security events, and responding to threats using our proprietary platform and tools. The Senior Analyst will evaluate network, endpoint, and authentication activity on customer networks to find risk and threats and define mitigation strategies. Candidates must be located in the Chicagoland area as this is not a remote position.  We will not be sponsoring visa candidates at this time.

Submit your resume to hello@uncommonx.com.

Responsibilities Include:

• Triage and analyze incoming events and alerts from various security platforms and technologies. 
• Respond in a timely manner (within documented SLA) via phone and email to configuration, general security, incident management, and other requests.
• Evaluate network, endpoint, and authentication / authorization events to find risks and threats. 
• Follow escalation points and run books to conduct investigations.
• Prepare and document standard operating procedures and protocols.
• Prepare and document monthly reports and threat intelligence for customers. 
• Manage and communicate with customers regarding change requests on Managed devices.
• Actively participate in Incident Response engagements.

Key Competencies:

• Must currently reside within the greater Chicagoland area, as this position requires onsite presence and is not eligible for remote work. The candidate must be available to work and embrace the night shift, 7PM – 7AM.
• 2–4 years of experience in a Security Operations Center (SOC), Managed Detection and Response (MDR), Incident Response, or a comparable cybersecurity role.
• Strong understanding of cybersecurity principles, information security architecture, networking, and enterprise systems administration.
• Advanced expertise in security monitoring, threat detection, incident investigation, containment, eradication, and recovery processes.
• Proven ability to manage escalated security incidents and conduct complex investigations in dynamic, high-pressure environments.
• Deep knowledge of cyber threat actor tactics, techniques, and procedures (TTPs), including practical application of the MITRE ATT&CK framework and the NIST Cybersecurity Framework.
• Proficiency with enterprise security technologies, including SIEM, EDR, IDS/IPS, threat intelligence platforms and endpoint security solutions.
• Experience with disaster recovery, business continuity, vulnerability management, and cybersecurity best practices across enterprise environments.
• Ability to develop, automate, and optimize security processes using scripting languages such as Python, PowerShell, Bash/Shell, or Java.
• Strong analytical and critical-thinking skills with the ability to identify root causes, assess risk, and implement effective remediation strategies.
• Demonstrated leadership ability through mentoring, coaching and supporting junior analysts while contributing to overall team effectiveness.
• Excellent written and verbal communication skills, with the ability to effectively engage technical teams, business stakeholders and customers.
• Self-motivated, detail-oriented, and committed to continuous learning in a rapidly evolving cybersecurity landscape.
• Demonstrated integrity, sound judgment, and the ability to remain calm and effective during critical security events.

Educational/Certification Requirements/Assets:

• Associate's degree or equivalent from at a minimum two-year College or technical school in Information Technology, Information Security/Assurance, Engineering, or related field of study.
• At least three years of related experience and/or training; or equivalent combination of education and experience required.
• Industry certifications such as CEH, CCNA, SANS GSEC, Security+, Network+ a plus.
• Familiarity with industry/regulatory frameworks such as NIST CSF, ISO27001, SOC2, PCI/DSS a plus.