Our Company

At Teradata, we believe that people thrive when empowered with better information. That's why we built the most complete cloud analytics and data platform for AI. By delivering harmonized data, trusted AI, and faster innovation, we uplift and empower our customers—and our customers' customers—to make better, more confident decisions. The world's top companies across every major industry trust Teradata to improve business performance, enrich customer experiences, and fully integrate data across the enterprise.

What You'll Do

Teradata is seeking a Security Operations Analyst to join our Security Operations Center (SOC). This role combines hands-on technical work with a focus on threat detection, incident response, and security monitoring using Microsoft security technologies. The ideal candidate is eager to grow their skills in automation and threat analysis while contributing to a collaborative, high-performing security team.

Key Responsibilities

• Develop and maintain detection rules and alerts in Microsoft Sentinel to identify security threats and incidents.
• Assist in the tuning and optimization of existing alerts to reduce false positives while maintaining detection effectiveness.
• Support the creation and upkeep of playbooks for incident response and security orchestration.
• Contribute to automation initiatives that streamline SOC operations and improve response times.
• Investigate and respond to security incidents, escalating complex cases to senior analysts as needed.
• Participate in threat hunting activities using Microsoft Sentinel and Defender to identify potential compromises.
• Utilize Microsoft Defender for Endpoint (EDR) for endpoint threat detection, investigation, and response.
• Analyze security telemetry and logs to identify trends, anomalies, and potential security gaps.
• Document security procedures, playbooks, and detection logic for knowledge sharing and compliance purposes.
• Stay current with emerging threats, attack techniques, and Microsoft security platform updates.

Who You'll Work With

You will collaborate with Azure infrastructure teams and senior SOC analysts to implement security best practices and support defense-in-depth strategies.

What Makes You a Qualified Candidate

• Solid working knowledge of Microsoft Sentinel including KQL (Kusto Query Language), analytics rules, and workbooks.
• Proficiency with Microsoft Defender for Endpoint including threat detection, investigation workflows, and advanced hunting.
• Foundational understanding of Azure platform concepts including Azure AD/Entra ID, Azure Security Center, and identity protection.
• 2–3+ years of experience in security operations, incident response, or a related cybersecurity role.
• Experience working with detection rules and playbooks in a SIEM environment.
• Working knowledge of threat actor tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK.
• Familiarity with scripting or automation languages such as PowerShell or Python.
• Ability to manage multiple tasks effectively and perform well under pressure.

What You'll Bring

• Good communication skills with the ability to document and convey technical findings clearly.

Why We Think You'll Love Teradata

We prioritize a people-first culture because we know our people are at the very heart of our success. We embrace a flexible work model because we trust our people to make decisions about how, when, and where they work. We focus on well-being because we care about our people and their ability to thrive both personally and professionally. We are committed to actively working to foster an inclusive environment that celebrates people for all of who they are.

#LI-OC1