Overview
syntax is a leading managed cloud provider for mission critical enterprise applications and has been providing comprehensive technology solutions since 1972. Syntax has strength to implement and manage erp deployments (oracle, sap) in secure and resilient private, public or hybrid cloud environments. Syntax serves major north american corporations across diverse industries and collaborates with oracle, sap, aws, microsoft, ibm and other global technology leaders.
security operations analyst 2
we are seeking a motivated and experienced security analyst 2 to join our growing cybersecurity operations team. This role is ideal for a mid-level analyst who thrives in a fast-paced environment and is passionate about improving detection capabilities, mentoring junior analysts, and fine-tuning security tools and processes. You will play a critical role in managing security alerts, responding to high-priority incidents, and contributing to the continuous improvement of our security operations. You will also have the opportunity to specialize in areas such as endpoint detection and response (edr), security information and event management (siem), or remain a generalist with a focus on analysis.
responsibilities
* monitor and manage the security alert queue during assigned shifts, ensuring timely triage and response.
* investigate and respond to critical and high-priority tickets in accordance with established standard operating procedures (sops).
* collaborate with senior team members to build and tune detections, refine edr policies, and optimize alerting mechanisms.
* provide mentorship and guidance to junior security analysts, helping them grow their technical and analytical skills.
* contribute to the continuous improvement of incident response workflows, documentation, and playbooks.
* participate as a primary responder during incident response and post-incident reviews, ensuring lessons learned are captured and applied.
* assist in the development and maintenance of security metrics and reporting.
potential specializations
* generalist (analysis): broad focus on alert triage, incident response, and threat hunting.
* detection engineering: performing deeper investigations and automating processes to assist with alerting.
* edr (endpoint detection and response): focus on endpoint telemetry, policy tuning, and threat containment.
* siem (security information and event management): develop and tune correlation rules, dashboards, and log ingestion pipelines.
qualifications
required
* 2–4 years of experience in a soc or cybersecurity operations role.
* strong understanding of security principles, threat detection, and incident response.
* experience with edr platforms (e.g., crowdstrike, sentinelone, microsoft defender).
* familiarity with siem tools (e.g., splunk, sentinel, qradar).
* ability to analyze logs, alerts, and network traffic to identify malicious activity.
* excellent communication and documentation skills.
preferred
* experience mentoring or training junior team members.
* scripting or automation experience (e.g., python, powershell).
* relevant certifications (e.g., security+, cysa+, gcia, gcih, or equivalent).
* good english written and spoken level is required as working in an international team. Documentation and meetings are done in english.
why syntax?
become a part of our success story and work in a company with exciting innovation projects across the industry. We recently launched one of the world\'s most advanced manufacturing facilities based on sap s/4hana cloud and sap digital manufacturing cloud for execution - for smart press shop, a pioneering joint venture between porsche and forming specialist schuler.
* competitive, above-average compensation
* global opportunities to work from abroad
* flexible working time models, home office
* attractive benefits, e.g. company pension scheme or health offers
* a modern environment where the individual is valued
* open feedback culture, flat hierarchies and a motivated team
* individual career planning with continuous training and coaching on the job
you see a personal challenge in this responsible task? Apply now - and become part of the syntax team!
#j-18808-ljbffr