Information Security Operations Analyst II
Hybrid · Deerfield Beach, Florida, United States
Job Summary
Information Security Operations Analyst II responsible for designing, building, and scaling offensive security capabilities, conducting red/purple team exercises, developing custom tooling and automation, and integrating AI-assisted techniques into security testing and SDLC workflows. Responsibilities include executing penetration testing and attack simulations across on-prem, cloud, identity, and SaaS environments; validating defensive coverage with detection and response teams; performing vulnerability and exploitation analysis; developing reusable offensive security tooling; mentoring junior analysts; and producing documentation, test reports, and playbooks to scale security testing and enable secure development practices.
Required Qualifications
- Hands-on experience with penetration testing, red team, purple team, or adversary emulation activities
- Strong understanding of Windows, Active Directory, Azure/Entra ID, networking, cloud platforms, and SaaS architectures
- Experience with common offensive security tools and frameworks (e.g., C2 frameworks, vulnerability scanners, exploit frameworks)
- Knowledge of MITRE ATT&CK, kill chains, and attacker tradecraft
- Experience validating security controls such as EDR, SIEM, identity protections, email security, and cloud security controls
- Strong scripting and automation skills; ability to customize or build tools to support testing objectives
- Ability to translate technical findings into clear risk-based narratives for technical and non-technical audiences
- Strong analytical, problem-solving, and critical-thinking skills
- Ability to work independently while collaborating effectively in cross-functional teams
- High attention to detail with a strong sense of ethics and responsible disclosure
- Experience working directly with software engineers to remediate vulnerabilities and improve secure development practices
- Understanding of modern SDLC and CI/CD pipelines, including how security testing fits into developer workflows
- Familiarity with secure coding practices and common vulnerability classes in modern applications (web, APIs, cloud-native services)
- Ability to communicate security findings in a way that developers can quickly understand, prioritize, and fix
- Mindset oriented toward enablement over enforcement, with a focus on reducing friction while improving security outcomes
- Background in software engineering, platform engineering, or SRE, with a desire to specialize in security
- Experience designing or maintaining production-quality code, not just scripts
- Comfort working with APIs, data pipelines, CI/CD systems, and cloud-native services as part of security capability development
- Curiosity and practical interest in applying AI/ML-assisted techniques to security testing, automation, and analysis
Additional Requirements
- Must be authorized to work in the United States
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.