[Remote] Security Operations Analyst

Note: The job is a remote job and is open to candidates in USA. Drake Software is dedicated to helping Americans maximize their tax refunds through innovative tax preparation software. They are seeking a Security Operations Analyst to support various security operations, focusing on detection, response, and continuous improvement of security measures.

Responsibilities

• Conduct proactive threat hunting and refine detection logic for improved accuracy and context
• Implement, configure, and optimize security tools, SIEM integrations, and data connections
• Monitor and validate security telemetry to identify visibility gaps and improve detection coverage
• Respond to escalated security incidents, performing analysis, containment, remediation, and root cause investigation
• Collaborate with IT, cloud, and development teams to strengthen security controls and visibility
• Create and maintain detailed incident documentation, timelines, and lessons learned
• Continuously improve playbooks, automation, operational processes, and detection effectiveness
• Contribute to process and capability development across the team
• Assist with onboarding and troubleshooting data sources and connectors within Microsoft Sentinel

Skills

• 5+ years of experience in cybersecurity operations, security operations, incident response, or threat detection
• Hands-on expertise with Microsoft Azure security services, including Azure Monitor, Sentinel, and Entra ID
• Strong understanding of SIEM operations, telemetry visibility, detection logic, and incident response workflows
• Experience with threat hunting, log analysis, and identifying visibility gaps within security monitoring environments
• Proficiency in Python and/or PowerShell scripting for automation and operational support
• Excellent communication and collaboration skills
• Highly self-motivated with the ability to manage priorities and operate independently in a fast-paced environment
• Hands-on expertise with CrowdStrike Falcon (deployment, configuration, and response)
• Familiarity with Amazon Web Services (AWS)
• Familiarity with Defender XDR, Splunk, and osquery
• Experience in consulting, finance, or technology environments
• Experience with data visualization tools (e.g., Power BI)
• Certifications such as GIAC, GCFA, or GCFR

Benefits

• Remote (U.S. only) but must be physically located within the continental United States.
• At Taxwell, you can expect a supportive, open, and inclusive atmosphere and a team that values your contributions.
• Taxwell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants without regard to race, color, religion, sex, national origin, age, disability, marital status, sexual orientation, gender identity, veteran status, and any other status protected under applicable law.
• If you need assistance or accommodation due to a disability, you may contact us at [email protected] or by calling 828-349-5887 to speak with a member of the HR Talent Acquisition team.

Company Overview