Blumira logo

Security Operations Analyst - 3rd Shift

Posted about 1 month ago

OfficeUnited States80k - 100k USD

Security Operations Analyst - 3rd Shift (1am - 9:30am ET)

Remote, United States

About Blumira and Our Culture

Blumira is the security operations platform built for growing teams and partners supporting them, integrating comprehensive visibility, tools, and expert guidance to give IT and security teams peace of mind from knowing they never have to go it alone. Every business needs strong security and deserves tools built for them, not just the largest enterprises. In helping them, we help their customers, and, overall, make the Internet a safer place.

Our team is passionate about putting resilience in reach for every organization and team, keeping the business running smoothly and helping teams build their own expertise through daily security practice. To realize our vision, we're looking for inquisitive and driven teammates, like you! Be part of a friendly and supportive team that embraces who you are and offers you the opportunity to help build and scale the Ann Arbor tech security scene and to learn and grow with experienced SaaS security leaders. You will have the ability to make a big impact in the initial build of Blumira’s Customer Experience (CX) organization and take Blumira to the next level!

About the Opportunity

This is a multi-functional role for someone who’s passionate about helping others to protect their organization’s security to the fullest extent possible. Security Operations Analysts work closely with our customers to make sure they know their security is in good hands with Blumira, through performing Security Information and Event Management (SIEM) duties, security analysis, and technical support.

Key Responsibilities

  • Deliver exceptional support experiences for our customers through advanced security expertise and thoughtful, empathetic communication
  • Serve as a technical leader and mentor, helping guide other team members through positive influence and knowledge sharing
  • Work closely with our customers to provide expert-level advisory services on complex security questions and product issues
  • Lead troubleshooting efforts with customers and perform advanced log analysis to provide comprehensive context around security incidents
  • Be on-call for rare critical security incidents and help lead response efforts
  • Actively contribute to incident responses and help propose technical solutions
  • Share your deep technical expertise across all levels of the Security Operations team, our customers, and colleagues throughout the organization
  • Work closely with the Incident Detection Engineering team to triage critical and high priority security incidents
  • Provide leadership and mentorship during security events
  • Drive Security Operations team efficiency through process creation, optimization, and innovative feature ideas
  • Work on special projects and initiatives to expand team skillsets and capabilities
  • Regularly contribute to team content creation including how-to articles, documentation, and blogs
  • Serve as a sought-after resource among team members for complex technical challenges
  • Actively advocate for customers throughout the organization

Required Key Skills and Qualifications

  • 3–5 years of professional experience in a cybersecurity-focused role (SOC, Incident Response, or Security Engineering).
  • Strong technical proficiency in Windows endpoint security, including a deep understanding of registry keys, file systems, and OS hardening.
  • Demonstrated experience with SQL, specifically the ability to write complex queries to extract and analyze security data.
  • Working knowledge of industry frameworks, such as MITRE ATT&CK, NIST, or CIS, and how to apply them to real-world threat scenarios.
  • Experience with SIEM platforms (e.g., Blumira, ELK, Splunk) for log correlation and event triaging.
  • Proficiency with modern support tooling, specifically Zendesk (or similar ticketing platforms) and productivity suites like Google Workspace and Slack.
  • Technical Versatility: The ability to quickly master new, specialized software platforms and security tools as the product landscape evolves.
  • Outcome-Oriented: A track record of consistently meeting or exceeding KPIs and maintaining high quality while working under SLA pressure.
  • Analytical Mindset: Proven ability to synthesize complex technical information into clear, concise summaries for both technical and non-technical stakeholders.

Bonus

  • Relevant Industry Certifications: Possession of advanced security certifications such as CISSP, GCIH (GIAC Certified Incident Handler), GCFA, or Sec+.
  • Networking Background: Previous experience in Network Administration or a deep understanding of TCP/IP, DNS, and firewall configuration to assist in troubleshooting connectivity-related security issues.
  • Cloud Security Expertise: Familiarity with AWS, Azure, or GCP environments and their respective security logging and monitoring tools.
  • Scripting Capabilities: Basic proficiency in Python or PowerShell to automate repetitive tasks or parse large datasets during incident investigations.
  • Malware Analysis: Foundational knowledge of static and dynamic malware analysis or sandbox execution.

Perks and Benefits

  • Competitive compensation and stock equity plan
  • Unlimited PTO
  • A flexible work environment that supports working from home
  • Comprehensive benefits package that includes medical, dental, vision, and life insurance, as well as a company sponsored pre-tax retirement savings program

Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

Please note that this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time, with or without notice.

This role requires sustained computer use and may involve extended periods of sedentary work.

This position may require occasional travel. The frequency and duration of travel will vary depending on business needs.

Blumira is an inclusive employer. We are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition or any protected category prohibited by local, state or federal laws.



Annual Salary Range
$80,000$100,000 USD
Job details
Workplace
Office
Location
United States
Salary
80k - 100k USD
per year

Blumira is an open Security Operations platform that provides busy IT teams with ransomware protection, compliance support, detection & response and more.

Employees
60
Industry
Computer and Network Security
Headquarters
Ann Arbor, Michigan
Founded
2018
Company location
201 Nickels Arc, Ann Arbor, Michigan 48104, US
Specialties
Threat Detection, Information Security, cybersecurity, Incident Response, Security Playbooks, XDR, Cloud SIEM, Automated Response, Compliance Reporting, Endpoint Detection, MSP Security, SMB Cybersecurity, and Honeypots

Key team members

Mike Sutton

Mike Sutton

Apply smarter with Jobr

Jobr aggregates jobs directly from company career portals — no middlemen. Our team applies on your behalf with AI-tailored resumes, reviewed by a human before submission.

Direct from company career pages
AI-personalised cover letters
Human review before every submit
Application tracking & follow-ups