Who we are:
For over 25 years, Global Relay has set the standard in enterprise information archiving with industry-leading cloud archiving, surveillance, eDiscovery, and analytics solutions. We securely capture and preserve the communications data of the world's most highly regulated firms, giving them greater visibility and control over their information and ensuring compliance with stringent regulations.
Though we offer competitive compensation and benefits and all the other perks one would expect from an established company, we are not your typical technology company. Global Relay is a career-building company. A place for big ideas. New challenges. Groundbreaking innovation. It's a place where you can genuinely make an impact – and be recognized for it.
We believe great businesses thrive on diversity, inclusion, and the contributions of all employees. To that end, we recruit candidates from different backgrounds and foster a work environment that encourages employees to collaborate and learn from each other, completely free of barriers.
Your role:
As a Cyber Security Operations Analyst, you will play a key role in protecting Global Relay by monitoring the technology environment, investigating security events and supporting the timely detection and response to cyber threats. You will operate enterprise security technologies and execute established operational processes to help maintain the confidentiality, integrity and availability of the organization's systems and data.
You will work closely with Engineering, Infrastructure, Product, Security Architecture & Technology and other technology teams to investigate security events, support incident response activities and contribute to the prioritization of technical vulnerabilities based on exploitability, exposure and threat intelligence.
Working within the Security Operations & Threat Management team, you will contribute to the continuous improvement of operational processes, monitoring capabilities and cyber resilience while helping ensure Global Relay can effectively detect, respond to and recover from cyber threats.
Your Responsibilities:
- Monitor and analyze security events to identify malicious activity and support timely detection and response.
- Investigate alerts using endpoint, network and cloud telemetry, validating events and escalating where appropriate.
- Perform initial incident triage, classification and prioritization using established playbooks.
- Execute approved containment actions and support eradication and recovery activities.
- Maintain accurate investigation records, evidence and operational documentation.
- Operationalize threat intelligence by correlating indicators of compromise with security events.
- Support risk-based vulnerability prioritization by validating findings and identifying exploitable exposure.
- Collaborate with Infrastructure, Engineering and Application Security to support incident resolution.
- Evaluate monitoring effectiveness and recommend improvements to Security Architecture & Technology.
- Contribute to operational metrics, lessons learned and continual service improvement.
- Participate in cyber security table top exercises and maintain operational readiness.
- Support a collaborative, customer-focused and high-performing security culture.
About You:
- 1-2+ years in Cyber Security, Information Technology or a related discipline, with experience supporting security monitoring, incident response or IT operations within enterprise environments.
- Demonstrated experience monitoring and investigating security events across endpoint, network, cloud or application environments using enterprise security technologies.
- Foundational understanding of cyber threat detection, incident response processes and security operations best practices.
- Experience working with technologies such as SIEM, EDR/XDR, IDS/IPS, email security, cloud security, vulnerability management and identity services.
- Understanding of networking, operating systems, authentication, logging and common attack techniques used by modern threat actors.
- Familiarity with threat intelligence concepts, the MITRE ATT&CK framework and risk-based vulnerability management principles.
- Working knowledge of industry frameworks and standards such as ISO 27001, NIST Cybersecurity Framework, CIS Controls and SOC 2.
- Information Security certifications are desirable and may include Security+, CySA+, GSEC, SSCP or equivalent industry-recognized credentials.
- Excellent verbal, written and documentation skills with the ability to communicate technical findings clearly and professionally.
- Strong analytical and problem-solving skills with a methodical approach to investigating security events.
- Demonstrated ability to prioritize work, adapt to changing priorities and perform effectively within a fast-paced operational environment.
- Collaborative team player with a strong commitment to continuous learning and operational excellence.
Please note, we do not offer sponsorship for this role.
What you can expect:
At Global Relay, there's no ceiling to what you can achieve. It's the land of opportunity for the energetic, the intelligent, the driven. You'll receive the mentoring, coaching, and support you need to reach your career goals. You'll be part of a culture that breeds creativity and rewards perseverance and hard work. And you'll be working alongside smart, talented individuals from diverse backgrounds, with complementary knowledge and skills.
Global Relay is an equal-opportunity employer committed to diversity, equity, and inclusion.
We seek to ensure reasonable adjustments, accommodations, and personal time are tailored to meet the unique needs of every individual.
To learn more about our business, culture, and community involvement, visit www.globalrelay.com.