Security Operations Center Analyst

We offer a flexible working policy that supports a healthy balance between personal and professional well-being. This role requires in-office presence on Tuesdays & Thursdays to collaborate, connect, and learn from peers - while also maintaining the flexibility for meaningful work-life balance.

Being a Security Operations Analyst at iManage means…
You are the primarily responsible team member for the day-to-day monitoring of, and initial security event detection analysis for, all production systems, network infrastructure, and all other related information security systems, data, and event logs using our SIEM and related tools. You will, when needed, triage and escalate higher-priority events to other Analysts & Engineers and provide the necessary technical information for further analysis. Additionally, you will assist in identifying, analyzing and influencing the management of security risks across the organization based on observed events, logs and collected threat intelligence.

Our Cloud Security Operations team is expanding and actively searching for technical professionals to join our dedicated, energetic, and fast-growing global organization. If you are looking to deepen your knowledge and expertise in Information Security, this position is the gateway into that world. Prior experience is less important to us than the capability, willingness and motivation to learn across a wide variety of technical areas.

iM Responsible For…

• Monitoring, triaging, and responding to security events across cloud-native and hybrid environments, leveraging a variety of sources and tools, while maintaining professionalism, urgency, and respect.
• Preparing and maintaining standard operating procedures (SOPs), and creating managed automation or utilizing a SOAR platform to handle repeatable operational security tasks.
• Developing, enhancing, and testing new detection and response capabilities, ensuring alignment with evolving threat landscapes and business needs.
• Create and maintain dashboards, queries, and reports in a SIEM, to support alert analysis, improve triage speed, and provide actionable insights.
• Collaborate with cross-functional teams—including DevOps, engineering, and IT—to ensure the delivery of high-quality, frictionless security operations and support.
• Continuously monitor threat and vulnerability sources, analyzing potential risks and providing recommendations for detection and response.
• Independently identify security alerts requiring exclusions or tuning, implement rule changes in a non-disruptive fashion, and perform post-change validation.
• Performing regular review and follow-up on cross-functional security controls in accordance with weekly, monthly, quarterly, and annual audit schedules.
• Clearly communicating security incidents, findings, and risk postures to stakeholders, including non-technical audiences, with emphasis on business impact and mitigation steps, both verbal and in detailed written documentation.
• Participating in incident response efforts, providing technical analysis, troubleshooting, and forensic support as needed.
• Utilizing a Cloud Native Application Protection Platform (CNAPP) to identify and analyze runtime threats, develop contextual insights, and orchestrate effective incident response for cloud-native workloads and applications; ensuring enforcement of compliance and security best practices across the cloud environment.

iM Qualified Because I Have…

• A nearly innate desire to figure things out, paired with a lifelong commitment to continuous learning and professional growth.
• Excellent verbal and written communication skills, effective in both in-person and electronic formats.
• Comfortable working with minimal supervision in a fast-paced, dynamic environment, after being given the appropriate tools and direction.
• Ability to approach challenges with a nonlinear yet rigorously analytical problem-solving mindset.
• Willingness and ability to work with global schedules, including non-traditional hours (e.g. PM, Weekends) and on-call escalations for incident response and work alerts.
• 2–5 years of general, hands-on IT or technical experience (e.g., systems administration, networking, or similar); non-traditional experience will be considered.
• 1–3 years of direct or adjacent Information Security experience, with the motivation and capability to rapidly absorb technical security knowledge.
• Exposure to automation and scripting tools such as Ansible, Terraform, Python, PowerShell, AWS Lambda, or Azure Functions.
• Basic understanding of endpoint protection technologies, with preference for EDR tools such as Microsoft Defender, CrowdStrike, or similar.
• End-user focused experience to investigate security issues and communicate risks clearly with technical and non-technical teams.
• Familiarity with Microsoft Azure security features, including Microsoft Defender for Cloud, Microsoft Defender for Servers, Microsoft Defender for Endpoint, Microsoft Defender for Office, Microsoft Sentinel, Conditional Access, XDR, Security Center, and Event Hubs.
• Foundational understanding of cloud service providers such as Azure or AWS; certifications (e.g., AZ-500, AWS Security Specialty) are a plus.
• Awareness of common cybersecurity frameworks such as MITRE ATT&CK and the Cyber Kill Chain.
• Proficiency using SIEM platforms and writing queries using query languages (e.g. SPL, KQL, others)
• Familiarity with Cloud Native Application Protection Platforms (CNAPPs) such as Prisma Cloud, Microsoft Defender for Cloud, or Wiz.
• Actively utilize Git-based workflows for version control to ensure proper management, collaboration, and auditability of security operations artifacts.

Don't meet every qualification listed above? Studies show that women and people of color are less likely to apply to jobs unless they meet all qualifications. At iManage, we are committed to building a diverse and inclusive environment, and encourage everyone to show up as their full authentic selves. We welcome those that come with a growth mindset and a hunger for learning; so, if you are excited about this role but your past experience doesn't align perfectly with every qualification we encourage you to apply anyways!

iM Getting To… 

• Join a rapidly evolving, industry-leading SaaS company on an exciting journey of growth and scalability! 
• Take on meaningful, high-impact challenges by leveraging cutting-edge technologies and best-in-class protocols to drive innovation. 
• Own my career path with our internal development framework. Ask us more about this! 
• Expand my skill set and earn certifications with unlimited access to LinkedIn Learning courses and interactive Microsoft courses & training. 
• Be part of a supportive and experienced team within a dynamic, inclusive, and encouraging culture. 
• Enjoy flexible work hours that empower me to balance personal time with professional commitments. 
• Collaborate in a modern, open-plan workspace featuring a gaming area, free snacks and drinks, and regular social events. 

iManage Is Supporting Me By... 

• Creating an inclusive environment where I can help shape the culture not just by fitting in, but by adding to it.
• Providing a market competitive salary that is applied through a consistent process, equitable for all our employees, and regularly reviewed based on industry data.
• Rewarding me with an annual performance-based bonus.
• Offering comprehensive Health/Vision/Dental/Life Insurance, and a 401k Retirement Savings Plan with a company match up to 4%.
• Granting enhanced leave for expecting parents; 20 weeks 100% paid for primary leave, and 10 weeks 100% paid for secondary leave.
• Providing me with a flexible time off policy to take the time off that I need. Be it for vacation, volunteering, celebrating holidays, spending time with family, or simply taking time to recharge and reset.
• Having multiple company wellness days each year to prioritize mental health and well-being. 
• Providing access to RethinkCare, a global behavioral health platform that enhances personal well-being, strengthens professional resilience, and empowers parental success through expert-led training and resources. 

The overall US annual base salary range for this position is $74,000–$113,000 per year. Individual compensation for each candidate depends on factors such as qualifications, experience, and candidate location. This range does not include additional forms of compensation, such as bonuses, commission, or benefits. Your recruiter will provide further details about the offer range, incentives, and overall compensation during the hiring process.

iManage is committed to providing an excellent candidate experience and will never ask you to engage in recruitment activity via text and exclusively communicates from emails using the @imanage.com domain. If you have any concerns or questions about communications you have received, please send them to [email protected] so our team members can review.

About iManage… 

At iManage, we are dedicated to Making Knowledge Work™. Our intelligent, cloud-enabled, and secure platform is trusted by 4,100+ customers and 430,000 users worldwide, managing over 11 billion documents and 11 petabytes of data. We empower professionals across 65+ countries to unlock the full potential of their business content and communications. 

We are continuously innovating to solve the most complex professional challenges and enable better business outcomes; Our work is not always easy but it is ambitious and rewarding.

So we’re looking for people who embrace challenges. People who thrive on solving problems, pushing boundaries, and collaborating with the industry’s best and brightest. That’s the iManage way. It’s how we turn the impossible into reality, empower our employees to grow, unlock their potential, and create a meaningful impact on everything we do. 

Whoever you are, whatever you do, however you work. Make it mean something at iManage. 

iManage provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Learn more at:

Please see our privacy statement for more information on how we handle your personal data:

#LI-Hybrid
#LI-LM1