Position Overview
The Information Security Analyst II is part of the Security Operations function and is responsible for improving how we detect, investigate, and respond to security activity across the environment. This role goes beyond alert handling. It requires someone who can analyze real signals, use proper judgment, improve noisy or inefficient workflows, and contribute to a more consistent and scalable security operations model. In addition to investigation and response work, this role also includes hands-on administration and operational ownership of security systems and tools used across the security function. You will work across monitoring, investigation, incident support, control tuning, and operational improvement in a complex SaaS environment where security outcomes must be both effective and sustainable.
Responsibilities
- Investigate security alerts and events across endpoint, identity, email, network, and cloud sources, and determine which represent real risk versus noise.
- Analyze logs, telemetry, and system behavior to identify suspicious activity and potential compromise.
- Participate in Incident Response investigations as a member of the CIRT, including evidence collection, analysis, and producing clear, structured, and comprehensive incident reports using standardized formats.
- Improve detection quality by tuning alerts, refining triage logic, and reducing false positives without impacting coverage.
- Identify repetitive or inefficient workflows and convert them into more consistent and scalable operational processes.
- Administer, maintain, and optimize security tools and platforms, ensuring they are effectively configured and operationally aligned.
- Work with CorpIT, Engineering, and other teams when investigations, tooling changes, or control improvements require coordination.
- Participate as a member of the Information Security team in developing and maintaining security operations practices and overall security strategy.
- Stay up to date on information security practices and apply them effectively within the organization.
- Maintain and ensure confidentiality of company, client, and employee data.
- Participate in and contribute to investigations conducted after hours and on weekends as necessary.
Qualifications
The ideal candidate will have the following education, work experience, and abilities:
- 4 to 6 years of experience in security operations, incident response, or a related hands-on security role.
- A.S. or B.S. in Computer Science, MIS, or related Information Technology field highly preferred.
- Advanced English, written and spoken.
- Proven experience investigating alerts, analyzing logs, and supporting security incidents.
- Familiarity with core security platforms such as SIEM, IDS, EDR/XDR, email security, identity signals, and vulnerability-related tooling.
- Ability to distinguish meaningful security signals from operational noise and explain findings clearly.
- Highly responsible, motivated team player.
- Experience improving existing processes, detections, or workflows, not just executing them.
- Excellent analytical thinking, attention to detail, and ability to work through ambiguous situations.
- Clear communication and ability to work across technical teams.
What Does Sovos Offer You?
The tools to enhance your life - because we want you to enjoy your life outside of work and inside!
- Bi-Weekly Meeting Free Days
- Mentoring Programs
- Globally recognized Training and Development programs
Sovos is an equal opportunity employer committed to providing an environment that celebrates diversity and where equal employment opportunities are available to all applicants and employees. We do not discriminate against race, color, religions, national origin, age, sex, marital status, physical or mental disability, veteran status, gender identity, sexual orientation, or any other characteristic provided by law. At Sovos, all employees are encouraged to bring their whole selves to work.
About Sovos
Sovos was built to solve the complexities of the digital transformation of tax, delivering complete, connected solutions for tax determination, compliance, and reporting. Sovos supports more than 8,000 customers—including half of the Fortune 500—across more than 70 countries. The company’s SaaS products and proprietary platform integrate with a wide range of business applications and government systems. For more information visit http://www.sovos.com and follow us on LinkedIn and Twitter.
