At UNCOMN, we don’t just fix issues; we deliver secure solutions that power essential operations in both the public and private sectors. Our team tackles tough challenges, whether it’s improving organizational systems, streamlining logistics, or making sense of complex data all with one goal: helping our clients succeed so they can continue serving others.
We’ve built a culture rooted in our Core Values, where innovation thrives, work-life balance is respected, and career growth is always encouraged. We're also proud to be recognized as a ‘Top Workplace,’ and that’s not just us talking; it’s our employees. Now, we’re looking for another UNCOMN Genius to join our dynamic team. If you love solving puzzles, building new things, fixing what’s broken, or pushing the boundaries of creativity, we encourage you to explore the details of this position below!
UNCOMN is seeking a Security Operations Analyst to support frontline security monitoring and compliance operations. This role is split between operating UNCOMN's compliance evidence engine and serving as a SOC Analyst, helping ensure audit readiness, while monitoring, triaging, and responding to security events across the environment. This is an in-person position, with some remote flexibility, subject to supervisor approval and business needs, and additional key responsibilities include:
SOC Analyst Responsibilities
- Monitor, investigate, and respond to security alerts and events across endpoint, network, cloud, identity, email, and SIEM platforms, ensuring timely triage, escalation, and resolution.
- Review logs, detections, and system activity to identify malicious or unauthorized behavior, and support incident response through documentation, evidence collection, and coordination with internal stakeholders or service providers.
- Investigate phishing, malware, account compromise, and other security events, escalating based on severity, business impact, and risk.
- Review vulnerability findings, support risk assessments, and coordinate remediation planning and corrective actions with internal IT and other stakeholders.
- Configure, tune, and optimize endpoint protection and related security tools to strengthen detection coverage and device security.
- Manage firewall rule requests, reviews, and updates in coordination with the IT Service team and engineering stakeholders; review, validate, and test firewall changes; and provide guidance on firewall hardening to support secure, controlled, and business-aligned access.
- Support secure communication and data protection processes, including encrypted email, secure file sharing, and related protected communications tools.
- Test incident response readiness through tabletop exercises and contribute to improvements in playbooks, workflows, and SOC processes.
- Support internal IT with security-related requests, including software reviews, troubleshooting assistance, and operational security coordination.
Security Compliance Responsibilities
- Collect and index compliance evidence, maintaining a structured evidence library with retrieval discipline and naming standards.
- Track evidence freshness and coordinate recurring evidence pulls according to UNCOMN’s operating cadence.
- Support control testing, including evidence completeness checks and internal sampling support.
- Manage audit logistics, including PBC lists, auditor request tracking, response coordination, and closure tracking.
- Maintain training and attestation evidence, including completion tracking and audit-ready packaging.
- Support POA&M closure by assembling closure evidence packages and validating closure completeness.
- Intake and normalize vendor evidence from MSP and MSSP providers to ensure it meets UNCOMN audit expectations.