Security Operation Analyst

Security Operations Analyst Overview We are seeking a Security Operations Analyst with a strong engineering focus and deep hands-on experience in enterprise security environments. This role goes beyond traditional incident response and requires advanced troubleshooting, proactive system testing, and configuration across a global network. Experience with Zscaler (ZIA/ZPA) is essential. The ideal candidate is a self-starter who can independently investigate issues, contribute to hardening efforts, and support complex security initiatives. Key Responsibilities ● Provide Tier 3 technical support with a focus on advanced troubleshooting and configuration of Zscaler ZIA and ZPA, including handling geo-specific and routing-related issues. ● Perform proactive security tasks such as vulnerability scanning, perimeter probing, patch validation, and system hardening. ● Investigate and resolve account issues in Active Directory (AD), Microsoft Entra, and Okta. ● Engineer security improvements and automations using PowerShell, Python, Bash, or similar scripting tools. ● Administer and fine-tune integrations with Zscaler, Cloudflare WAF, and other core security platforms. ● Support monthly reporting and compliance efforts using Excel and automation scripts. ● Track and manage escalated issues in ServiceNow and Jira with clear, structured documentation. ● Execute block/allow requests for IPs, MACs, domains, and email addresses. ● Collaborate with other IT teams to support secure and scalable infrastructure improvements. ● Contribute to Zero Trust and CSPM architecture initiatives. Required Qualifications ● 5+ years of experience in IT systems, security operations, or infrastructure roles. ● At least 2 years of direct hands-on experience with Zscaler ZIA/ZPA. ● Strong technical troubleshooting skills in networking, DNS, DHCP, HTTP/S, VPNs, and endpoint security. ● Practical experience with Active Directory, IAM (Okta, MFA, SSO), and related access technologies. ● Familiarity with analyzing logs, generating PCAPs, and interpreting security telemetry. ● Demonstrated ability to work independently and troubleshoot issues beyond basic incident response. ● Experience scripting in PowerShell, Python, or Bash to automate processes and improve security workflows. ● Comfort working in a fast-paced environment with a mix of reactive and proactive security responsibilities. Preferred Skills ● Experience with Zero Trust models and Cloud Security Posture Management tools. ● Knowledge of ServiceNow Vulnerability Response module. Familiarity with Microsoft Exchange and email security protocols such as SPF, DKIM, and DMARC. ● Background in firewall management, endpoint hardening, or perimeter defense in cloud or hybrid environments. Key Points ● Ideal Candidate: An analyst who has gradually advanced from L1 to L3 Support.