Principal Analyst – Security Operations
Glints
Job Description
Principal Analyst – Security Operations
Position OverviewThis role is responsible for managing and strengthening the organization’s overall security posture across both on-premise and cloud environments. The position focuses on vulnerability remediation, patch management, and automation of security operations.The role also involves conducting security assessments, managing deviations, and leading security initiatives, including automation and AI-driven enhancements. The successful candidate will collaborate closely with cross-functional teams to ensure robust, compliant, and scalable security practices.
Key Responsibilities1. Security Posture ManagementManage end-to-end security patching lifecycle across systems and platformsEnsure timely remediation of vulnerabilities and end-of-life (EOL) software risksCollaborate with infrastructure and vulnerability management teams to prioritize fixes based on risk and business impactMaintain and improve patch management processes, policies, and documentation2. Security AutomationDesign and develop automation scripts and workflows for security operationsEnhance and maintain dashboards using tools such as JIRA, Power BI, and other platformsEnsure automation solutions are scalable, secure, and aligned with internal standards3.
Security Operations Metrics & ReportingTrack, analyze, and automate security metrics reportingSupport preparation of reports, dashboards, and presentation materials for stakeholders4. Security InitiativesContribute to ongoing security projects and initiativesSupport implementation of automation and AI-driven security capabilitiesProvide ideas, technical input, and execution support5. Security Deviation ManagementReview and assess security exception requests from internal stakeholdersEvaluate risks based on threat intelligence, regulatory requirements, and security standardsRecommend mitigation controls and ensure alignment with organizational risk appetite6.
Stakeholder CommunicationCommunicate effectively with internal teams and external vendorsClearly articulate risks, remediation plans, and security requirements (“why, what, and how”)RequirementsEducationBachelor’s degree in Computer Science, Information Security, Computer Engineering, Information Systems, or related fieldExperienceMinimum 12 years of technology experience, with at least 8 years in cybersecurity, preferably in regulated industries (e.g., banking, insurance, fintech)Strong expertise in:Vulnerability management and EOL remediationPatch management processes and toolsSecurity monitoring and automationCloud environments (Azure, AWS, GCP)Containers and microservices architecture (e.g., Kubernetes)Hands-on experience in:Scripting (Python, Shell, or similar)API integration and automation tools (e.g., Power Automate)Data visualization tools (e.g., Power BI)Experience in DevOps, SRE, or development roles is an advantageStrong analytical and problem-solving skills with a data-driven approachFamiliarity with regulatory frameworks (e.g., MAS TRM or similar)
Certifications (Preferred)One or more of the following:CISSPCEHCSA / ECSAGSOC or equivalent
Key CompetenciesStrong analytical and critical thinking skillsExcellent communication and stakeholder managementAbility to handle complex security issues and drive resolutionProactive mindset with continuous improvement focus