ZipRecruiter

Log In

2

Remote Cysa Jobs (NOW HIRING)

Merci Technologies - Talent

SOC Analyst II

New York, NY ยท Remote

This is a fully remote position open to Full-Time or Contract candidates. Key Responsibilities ... Security+, CySA+, GCIH, or equivalent certification * Experience with SOAR platforms and automation ...

BayNova LLC

Appian Developer

... fully remote / work from home role. Job Responsibilities: * Collect tactical knowledge about ... Candidate must have one of the following certifications: (CCNA Security, CySA+ GICSP, GSEC ...

New

BayNova LLC

Appian Developer

Newark, CA ยท On-site +1

... fully remote / work from home role. Job Responsibilities: * Collect tactical knowledge about ... Candidate must have one of the following certifications: (CCNA Security, CySA+ GICSP, GSEC ...

SAIC

AWS GovCloud Engineer

Scott Air Force Base, IL ยท Remote

$80K - $120K/yr

None Potential for Remote Work: ORA_ON_SITE Description SAIC is seeking an AWS GovCloud Engineer to ... IAT Level II (e.g., Security+, CySA+, SSCP, GSEC, GICSP, CND) per DoD 8570. * AWS certification (e ...

BayNova LLC

Appian Developer

Newark, CA ยท Remote

... fully remote / work from home role. Job Responsibilities: * Collect tactical knowledge about ... Candidate must have one of the following certifications: (CCNA Security, CySA+ GICSP, GSEC ...

Booz Allen Hamilton

Data Security Engineer

$86K - $198K/yr

Remote Work: No Job Number: R0240137 Location: Honolulu,HI,US Share job via: Share Data Security ... CySA+, GCIH, GSEC, or CASP+ Certification Clearance: Applicants selected will be subject to a ...

Zscaler

Insider Risk Analyst - SkillBridge Intern

Completion of specialized training or certifications such as Security+, CySA+, GSEC, or vendor-specific data protection tracks #LI-TJ1 #LI-remote At Zscaler, we are committed to building a team that ...

ESM

Cybersecurity Engineer

Vienna, VA ยท Remote

CND, CCNA Security, CySA+, GICSP, GSEC, Security + CE, or SSCP * Relevant DLP certification or ... remote office locations. Additional Requirements * Other duties as assigned ESM provides equal ...

Coalfire

Consultant, FedRAMP Assessment

Offline and remote evidence inspection of client provided documentation; appropriately mark ... Cybersecurity Analyst (CySA+) * GIAC Certified Incident Handler (GCIH) * GIAC Systems and Network ...

Coalfire

Senior Consultant - FedRAMP Assessment

Offline and remote evidence inspection of client provided documentation; appropriately mark ... Cybersecurity Analyst (CySA+) * GIAC Certified Incident Handler (GCIH) * GIAC Systems and Network ...

Valiant Solutions, LLC

SOC Manager

Washington, DC ยท On-site +1

Remote work requires a high level of trust in our employees, and we strictly adhere to the details ... Equivalent industry incident response certifications, such as CISSP, CISM, or CySA+, MAY be ...

Coalfire

Consultant, FedRAMP Assessment

Charleston, WV ยท Remote

Offline and remote evidence inspection of client provided documentation; appropriately mark ... Cybersecurity Analyst (CySA+) * GIAC Certified Incident Handler (GCIH) * GIAC Systems and Network ...

BayNova LLC

Appian Developer

Arlington, VA ยท Remote

... in a fully remote / work from home role. You will be supporting a fast moving enterprise ... Candidate must have one of the following certifications: (CCNA Security, CySA+ GICSP, GSEC ...

Abrigo

Cybersecurity Operator

Raleigh, NC ยท On-site +1

This role reports to the Director, Security Operations and is hybrid-remote based in our Raleigh ... CySA+, ISC2 CC, or similar) What You'll Get: * Market competitive total rewards package * To be ...

Harriscomputer

$100K - $120K/yr

US, Canada (Remote) Employment Type: Full-time About Altera Altera, a member of the N. Harris ... Industry-recognized certifications like CISSP, CompTIA Security+, or CySA+. * Expert knowledge of ...

Harriscomputer

Expert Security Engineer

Canada, KY ยท Remote

$100K - $120K/yr

US, Canada (Remote) Employment Type: Full-time About Altera Altera, a member of the N. Harris ... Industry-recognized certifications like CISSP, CompTIA Security+, or CySA+. * Expert knowledge of ...

next page

Showing results 1-20

All JobsRemote Cysa Jobs

Remote Cysa information

What is the difference between Remote Cysa vs Remote Security Analyst?

AspectRemote CysaRemote Security Analyst
CertificationsCySA+, Security+, CEHSecurity+, CISSP, CEH
Work EnvironmentRemote, cybersecurity teamsRemote, security operations centers
Industry UsageCybersecurity firms, IT departmentsOrganizations with security teams, government agencies
Job FocusThreat detection, vulnerability managementMonitoring, incident response

Remote Cysa and Remote Security Analyst roles share similar certifications and work environments, focusing on cybersecurity and threat management. However, Remote Cysa emphasizes vulnerability assessment and threat detection, while Remote Security Analysts often focus on monitoring security alerts and incident response. Both roles are vital in cybersecurity teams but differ slightly in daily responsibilities and specialization.

What are some common challenges faced by Remote CySA (Cybersecurity Analyst) professionals, and how can they be successfully managed?

Remote CySA professionals often navigate challenges such as limited direct access to on-premises systems, coordinating with distributed teams across different time zones, and maintaining clear communication during security incidents. To overcome these, it's helpful to leverage collaboration tools, establish clear protocols for incident response, and proactively schedule regular syncs with IT and security teams. Emphasizing documentation and fostering a culture of transparency can also support effective remote work and ensure security posture is maintained.

What is a Remote CySA and what do they do?

A Remote CySA, or Remote Cybersecurity Analyst, is a professional who works from a remote location to identify, analyze, and mitigate cybersecurity threats and vulnerabilities within an organization. Their responsibilities include monitoring security systems, investigating incidents, conducting vulnerability assessments, and recommending security improvements. They play a vital role in protecting sensitive data and ensuring compliance with cybersecurity policies while collaborating with IT teams and stakeholders remotely.

What are the key skills and qualifications needed to thrive as a Remote CySA (Cybersecurity Analyst), and why are they important?

To thrive as a Remote CySA, you need a strong understanding of cybersecurity principles, threat detection, and incident response, typically supported by a bachelor's degree in a related field and certifications like CompTIA CySA+. Proficiency with SIEM tools, vulnerability assessment platforms, and ticketing systems is usually required. Strong analytical thinking, attention to detail, and effective remote communication are crucial soft skills for success in this role. These skills and qualifications are vital for proactively identifying and mitigating cyber threats while collaborating efficiently with distributed teams.
More about Remote Cysa jobs
What cities are hiring for Remote Cysa jobs? Cities with the most Remote Cysa job openings:
What are the most commonly searched types of Cysa jobs? The most popular types of Cysa jobs are:
What states have the most Remote Cysa jobs? States with the most job openings for Remote Cysa jobs include:
What job categories do people searching Remote Cysa jobs look for? The top searched job categories for Remote Cysa jobs are:
Remote Cysa jobs near you
Infographic showing various Remote Cysa job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 37% Physical, 3% Hybrid, and 60% Remote job distribution.

SOC Analyst II

Merci Technologies - Talent

New York, NY โ€ข Remote

Full-time

Posted 4 days ago

Job description

About the Role
Merci Technologies is seeking a SOC Analyst II to join a 24/7 security operations team supporting one of our enterprise clients. This is a hands-on, second-line role at the center of the client's detection and response program. You will spend your day investigating alerts that have escalated past the initial triage layer, separating real threats from noise, and driving confirmed incidents through containment and resolution. The environment is fast-moving and telemetry-rich, spanning cloud and on-premises systems, thousands of endpoints, and a modern security stack built around SIEM, EDR, and email security platforms.

Beyond day-to-day monitoring, this role carries real ownership. You will help mature the detection content the team relies on, reduce alert fatigue by tuning out false positives, and contribute to the runbooks and playbooks that keep response consistent across shifts. You will work shoulder to shoulder with senior analysts, threat hunters, and detection engineers, which makes this an excellent position for someone who wants to deepen their technical bench and grow toward a Tier 3 or specialized security engineering track. This is a fully remote position open to Full-Time or Contract candidates.

Key Responsibilities

  • Monitor, triage, and investigate security alerts across SIEM, EDR, identity, and email security platforms
  • Own Tier 2 investigation, containment, eradication, and escalation of confirmed security incidents
  • Analyze logs, network traffic, endpoint telemetry, and user activity to identify indicators of compromise
  • Conduct root cause analysis and document incidents, findings, and response actions per established runbooks
  • Tune detection rules, suppress false positives, and recommend new detection logic in partnership with engineering
  • Participate in proactive threat hunting based on current threat intelligence and emerging tactics
  • Support and contribute to post-incident reviews, lessons learned, and continuous improvement of response playbooks
  • Maintain shift handoff notes and ensure continuity of monitoring across a 24/7 coverage model

Required Qualifications

  • 2 to 4 years of hands-on SOC, incident response, or security analyst experience
  • Working knowledge of SIEM platforms such as Splunk, Microsoft Sentinel, or QRadar
  • Familiarity with EDR tooling including CrowdStrike, SentinelOne, or Microsoft Defender
  • Solid grounding in networking fundamentals, TCP/IP, DNS, and common attack techniques
  • Ability to interpret logs and telemetry to reconstruct an attack timeline
  • Strong written documentation and clear communication under time pressure

Preferred Qualifications

  • Security+, CySA+, GCIH, or equivalent certification
  • Experience with SOAR platforms and automation scripting in Python or PowerShell
  • Working familiarity with the MITRE ATT&CK framework and threat-informed defense
  • Exposure to cloud security monitoring in AWS or Azure

What You Will Bring
You are curious, methodical, and calm when alerts spike. You enjoy the investigative side of security, you ask good questions, and you document your work so the next analyst can pick up where you left off. You see tuning and automation not as extra work but as the way a strong SOC scales.