At AlixPartners, we solve the most complex and critical challenges by moving quickly from analysis to action when it really matters; creating value that has a lasting impact on companies, their people, and the communities they serve.By understanding, respecting, and honoring the needs of our employees, clients, and communities, AlixPartners actively promotes an inclusive environment. We strongly believe in the value that diversity brings to our experiences and are committed to the perpetual enhancements of initiatives, policies, and practices. We hold ourselves accountable by providing the space for authenticity, growth, and equity for everyone.
AlixPartners has embraced a hybrid work model to provide flexibility and support our employees' work-life integration. Our hybrid model combines a mix of in-person at an AlixPartners office on Tuesday, Wednesday, & Thursday, and remote working options for Monday and Friday.
What you'll do
As a member of the Information Security (IS) team, you will contribute to the overall cyber defense of information assets and will conduct security monitoring, detection engineering, threat hunting, security posture analysis, and perform incident response investigations.
The Security Operations Analyst is a full-time position located in Southfield, MI, reporting to the Security Operations Team Lead. Paid relocation is not available.
Respond to, investigate, and analyze security events to determine appropriate actions
Analyze security system logs, security tools, and available data sources on a regular basis to identify attacks against the enterprise and report on any irregularities, issues related to improper access patterns, trending, and event correlations and make suggestions for detection rules and system tuning
Gather information from other IT staff and non-IT staff to obtain information regarding security problems to networks, servers, endpoints, and applications
Perform incident response activities and ensure that proper protection or corrective measures have been taken when an incident has been discovered
Administer information security controls and software such as endpoint protection, endpoint detection and response, intrusion detection/prevention (IDS/IPS), security incident and event management (SIEM), and physical security systems
Expected to stay current on security industry trends, new threats and attack techniques, mitigation techniques, and emerging security technologies
Provide insight and participate in security projects to evaluate and recommend security products for various applications and platforms throughout the organization while supporting business initiatives
Assist with the development, maintenance of, and training on technical documentation and Standard Operating Procedures (SOP).
Improve security efficiency and streamline/automate work processes while working collaboratively with other team members and IT staff to accomplish objectives
Participate, as needed, in critical incidents and implementation reviews
Additional responsibilities as identified. This description is not designed to encompass a comprehensive listing of required activities, duties, or responsibilities
What you'll need
Highly motivated to work in information security
Minimum of 1 years of Information Security experience, or experience working in Information Technology roles such as service desk, server admin, or network engineering
Bachelor's degree in Information Technology or related field preferred; work experience and background will be considered in lieu of formal education
Desire to continuously improve processes and procedures and share information with the team
Proficient knowledge of information systems security concepts and current information security trends and practices
Working knowledge of infrastructure security tools such as firewalls, network security monitoring, anti-malware,
CLZUU DOMUU SK111 SK222 SK333 SK444 SK555 SK666
