Security Analyst- (SOC Operations, Penetration Testing, Vulnerability Management, Compliance Management)

This Security Analyst has a strong background in SOC operations, penetration testing, vulnerability management, and compliance alignment across multiple regulated industries. Since 2020, they’ve supported two MSP environments, gaining broad exposure to healthcare, finance, energy, government contracting, and professional services. Their expertise spans NIST, HIPAA, PCI-DSS, and ISO 27001, allowing them to bridge the gap between technical controls and compliance requirements.

In their current role, they support 8–10 enterprise clients by leading SOC monitoring, incident response, and vulnerability remediation. They conduct penetration tests and web application assessments, leveraging tools such as Splunk and Sentinel for dashboarding, log analysis, and threat detection. Beyond alert handling, they proactively identify control gaps, enhance policies, and implement solutions to strengthen overall security posture.

They frequently engage with clients across the East Coast for site assessments, patching, and coordinated incident response, managing 20+ active incidents per day using tools like ConnectWise Manage, Autotask, NinjaOne, Kaseya, IT Glue, and Confluence.

Seeking to reduce out-of-state travel, they are targeting a remote or hybrid cybersecurity role at $100K+, with a focus on threat detection, compliance, and vulnerability management.