Security Operations Specialist II

POSITION SUMMARY: The Security Operations Specialist II plays a vital role in protecting the organization’s digital assets by supporting and executing core security operations across the enterprise, including information security, access control, secure communications, and computing infrastructure. Operating with moderate supervision, this mid-tier cybersecurity professional is responsible for detecting, analyzing, escalating, and responding to security threats identified through various monitoring systems.

As a key escalation point for security issues across departments, the Specialist applies sound judgment and follows established protocols to manage incidents effectively. The role also collaborates with internal teams—including IDS portfolio owners—to ensure regulatory compliance, strengthen threat detection capabilities, implement security best practices, and continuously improve operational tools, processes, and configurations.

This role an onsite position at Les Schwab headquarters in Bend, OR.

Applicants must be currently authorized to work in the United States on a full-time basis. This position is not eligible for visa sponsorship.

PRIMARY RESPONSIBILITIES:

30% - Threat Detection, Incident Response, and Escallation

• Investigate and respond to alerts generated by security tools.

• Escalate significant incidents and participate in containment and remediation efforts.

• Act as the second-level responder for security incidents generated by third party managed security services. Analyze and validate escalations and determine appropriate mitigation actions.

25% - Monitoring and Analysis of Security Alerts and vulnerabilities

• Perform daily monitoring of vulnerabilities, logs, network traffic, and system events to identify signs of malicious activity or policy violations.

• Generate reports to assist IDS teams with remediation, containment and improvement initiatives. 

25% - Provide support for the remediation of vulnerabilities and risks

• Analyze vulnerability reports from scanning tools and assign them to asset owners for remediation.  

• Collaborate with asset owners and IT teams to validate findings, prioritize remediation.  

• Document and track remediation activities.

• Improve reporting techniques and processes.  

10% - Documentation & Reporting:

• Maintain documentation to support current systems and develop new procedures as needed.

• Maintain incident tickets, logs, playbooks, and investigation records. Generate incident and monthly operational reports.

10% - Process Improvement, Training, and Compliance

• Identify and implement improvements to security operations workflows, including tuning detection tools, enhancing playbooks, and automating routine tasks to increase efficiency and accuracy.

• Participate in post-incident reviews and root cause analysis to drive continuous improvement of incident response procedures and strengthen overall security posture.

Educational/Experience Requirements: 

• Four year degree in information technology field Or may substitute a minimum of 4 years of experience in networking or information security for formal education

• Minimum of 2 years of related work experience required

• CompTIA Security+, Certified SOC Analyst (CSA), GIAC Certified Incident Handler (GCIH) or 2–4 years of hands-on experience in a Security Operations Center

• Proven track record of investigating and responding to security threats

Required Technical Skills/Knowledge: 

• Knowledge of servers, applications and networks  

• Ability to lead, design and implement complex technical projects and initiatives  

• Strong knowledge of and troubleshooting skills for network and security forensic functions

• Strong understanding of OSI Model and network related protocols 

General Knowledge and Abilities: 

• Analytical Skills: Moderate analytical and problem-solving skills 

• Communication: Ability to communicate technical and non-technical information clearly and professionally (both verbally and in writing) while ensuring that the quality and content of the message are relevant to the circumstances; ability to be an active-listener; the ability to draft, proofread, and send written communications effectively; the ability and willingness to carefully listen to others by asking appropriate questions and avoiding interruptions

• Confidentiality: Ability to work confidently, effectively and with discretion with all staff levels

• Flexibility: Willingness to work in an ever-changing environment with the ability to positively adapt to organizational, process, and technology changes

• Initiative: Ability to work effectively with moderate supervision 

• Multitasking: The ability to perform two or more tasks simultaneously or to shift back and forth between two or more activities or sources of information without difficulty

• Organization: Ability to manage work assignments though prioritization, paying attention to detail, and optimal time management

• Service Excellence: Exhibit the willingness to be stakeholder-focused by anticipating and understanding stakeholders' needs; collaborate with them to reach a suitable solution; then consistently meet and deliver on those expectations

• Teamwork: The ability to establish and maintain rapport, interact comfortably, and work well with coworkers. This includes cooperating, being supportive of others, willingly helping others, considering others’ ideas and opinions, sharing information, giving proper credit, and fulfilling team responsibilities

Physical Requirements: 

Primarily desk position; regularly required to sit, occasionally required to stand and walk. Requires frequent and repetitive use of hands and fingers to operate computer, mouse, keyboard, and office related equipment and the ability to reach with hands and arms. The position requires lifting no more than 10 pounds. Specific vision abilities required by this job include close visual acuity and the ability to adjust focus. Requires the ability to communicate verbally and exchange information over the phone and in person.

Work Environment: 

Office, non-manual work; the worker is not substantially exposed to adverse environmental conditions. Working on-call is required for this position, including but not limited to: evenings, weekends, and holidays.