About this Security Analyst role at Prime System Solutions
The Security Analyst role is responsible for advancing client security posture through proactive security engineering, continuous improvement of detection capabilities, and strategic alignment of security tooling and standards. This role drives optimization of high-fidelity monitoring practices, strengthening configurations, and producing actionable security insights—focusing on preventing threats, reducing organizational risk, and driving measurable security outcomes across client environments.
This role uses the NIST Cybersecurity Framework (CSF) 2.0 as an outcomes-oriented lens to help organize, prioritize, and communicate security strategy and execution (e.g., Govern/Identify/Protect/Detect/Respond/Recover), while influencing consistency and maturity across implementations.
Responsibilities:
- Operate and maintain proactive security capabilities across client environments, including monitoring, validation of security signals, and continuous improvement of configurations and detections.
- Conduct Security-as-a-Service operations, including reporting on security posture and security tool health/status.
- Improve detection quality by tuning correlation logic, dashboards, and alert thresholds to reduce noise and increase actionable outcomes.
- Perform advanced Windows and Microsoft 365 log analysis to identify suspicious patterns, misconfigurations, and early indicators of compromise, and translate findings into remediation actions.
- Advance hardening and baseline-aligned security implementations across endpoints, servers, identity, and cloud configurations.
- Support end-user risk reduction initiatives through security awareness training and phishing simulation platforms, including Huntress SAT and Breach Secure Now (where applicable).
- Ensure alignment of security tooling and operational practices to vertical requirements and ensure deployments match the applicable service model.
- Contribute to the evaluation of new security solutions for viability as service offerings, including feature comparison, operational fit, and standardization.
- Support internal AI and automation initiatives, including defining requirements, validating outputs, and scaling repeatable workflows.
- Act as a senior technical resource and escalation point, collaborating with cross-functional teams to coordinate deployments, resolve complex issues and improve/standardize processes.
- Provide clear, consultative client communication regarding security posture, risk exposure, and prioritized recommendations.
- Conduct compliance-related discussions and evidence narratives where needed (CMMC 2.0 context, SOC report awareness).
- Other related duties, as assigned.
Requirements
Experience:
- Minimum: 7+ years experience working for a Managed Service Provider (MSP).
- Preferred: 10+ years of experience in information security, systems integration, or system administration.
Knowledge, Skills, and Abilities:
- Advanced hands-on experience with SIEM operations, including log onboarding, normalization, correlation, alert tuning, and dashboards, along with experience supporting EDR/XDR operations.
- Experience with network security engineering, including TCP/IP fundamentals, network segmentation, switching/routing best practices, firewall hardening, secure configurations, VLANs, port controls, and IPSec/SSL VPNs.
- Experience supporting email threat protection platforms, along with DNS/Web filtering programs including policy management, rollout, and troubleshooting.
- Advanced knowledge of IAM practices, including governance, conditional access, and privileged access, along with experience in Intune-based endpoint management and deploying and supporting Duo MFA.
- Advanced experience with SentinelOne and Huntress for endpoint protection, including deployment, operations, and integration into security workflows.
- Experience with phishing simulation and security awareness platforms, including Huntress SAT.
- Strong Windows security logging and analysis skills with scripting and automation capability in PowerShell.
- Business-fluent English, with the ability to communicate effectively with client IT leaders, security contacts, executive stakeholders, and internal engineering and service teams.
- Eligible to work in Pakistan.
- Familiarity with CMMC 2.0 and SOC 1/2 concepts is a plus.
Benefits