Passer directement au contenu principal

We'd prefer it if you saw us at our best. is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice

Principal Cloud Security Operations Analyst

Job Category: Engineering & Cloud
Location: US - Connecticut - Remote | US - Florida - Remote | US - Maine - Remote | US - Maryland - Remote | US - Massachusetts - Remote | US - New Hampshire - Remote | US - New Jersey - Remote | US - New York - Remote | US - North Carolina - Remote | US - Pennsylvania - Remote | US - Rhode Island - Remote | US - South Carolina - Remote | US - Texas - Remote | US - Vermont - Remote | US - Virginia - Remote

Meet Our Team:

The Pega Cloud Security Operations Center (CSOC) is a team of information security professionals charged to protect Pega’s commercial cloud assets and offerings. Our mission is to protect Pega Cloud by deterring, detecting, denying, delaying, and defending against internal and external security threats. The CSOC provides detection, monitoring, and incident response services for Pega Cloud.

Picture Yourself at Pega:

Pega is a leader in customer engagement and digital process automation offering a commercial SaaS version of our industry-leading platform to our global clients. As a Principal Cloud Security Operations Analyst, you will play a critical role in ensuring the confidentiality, integrity, and availability of Pega's commercial cloud infrastructure and assets. You will be key in the continuous monitoring and protection of all global cloud security operations at Pega as well as a leader during incident response efforts. As a key member of a team consisting of highly capable and talented problem-solving analysts and engineers, you’ll help develop processes that drive proactive, automated detection and incident response tactics to support the quick resolution of cloud security events and incidents. 

You will accomplish this by collaborating with cross-functional teams – including other security analysts, threat detection engineers, vulnerability analysts, security engineers, system administrators, and developers – to proactively identify potential security risks and vulnerabilities within our cloud environment. You will leverage your strong analytical skills to assess and prioritize threats, applying your deep knowledge of industry best practices and cloud security frameworks.

As a Principal Cloud Security Operations Analyst at Pega, you’ll contribute to the success of our globally recognized brand. Your efforts will directly impact the security and trust our clients place in us, as we help them transform their business processes and drive meaningful digital experiences. So, picture yourself at Pega, where your expertise in cloud security is valued, and your passion for protecting data is celebrated. Join us in shaping the future of secure cloud operations and make a lasting impact on the world of technology.


What You'll Do at Pega:

  • Provide oversight for the analyst staff and manage daily operations including security monitoring of Pega Cloud environments and responding to internal security events/requests 
  • Lead security investigations and incident response activities to identify indicators of compromise (IOCs) and safeguard Pega Cloud and our clients 
  • Mentor and coach the CSOC analyst staff regarding analysis, investigations, incident response, threat hunting/detection, and other related operational work
  • Function as a trusted advisor for the CSOC staff and the larger security organization within Pega’s Technical Services Operations (TSO) branch
  • Develop and enhance standard operating procedures (SOPs) and security incident response plans (IRPs) for CSOC analysis and incident response methodologies
  • Actively contribute to the feedback loop for our threat detection team in developing high confidence detections focused on use cases for known and emerging threats, based on hypotheses derived from the Pega threat landscape
  • Assist in the development of playbooks for use by analysts to investigate both high confidence and anomalous activity
  • Work closely with stakeholders to design and implement robust security controls, detection mechanisms, and incident response methodologies ensuring compliance with relevant regulations and standards

Who You Are:

You have an insatiable curiosity with an inborn tenacity for finding creative ways to deter, detect, deny, delay, and defend against bad actors of all shapes and sizes. You have been in the “security trenches” and you know what an efficient security operations center looks like. You have conducted in-depth analyses of various security events/incidents, performed comprehensive incident response efforts, developed new methods for detecting and mitigating badness wherever you see it, and helped build successful security teams. You bring a wealth of cloud security experience to the table and are ready to harness that expertise to dive into cloud-centric, technical analysis and incident response to make Pega Cloud the most secure it can be.


What You've Accomplished:

  • 2+ years of operational experience working for a large cloud service provider, with solid working knowledge of the applicable threat landscape and attack surface considerations
  • 4+ years of operational Splunk usage – primarily for analysis, investigations, and incident response including an in-depth use of Splunk Enterprise Security; creating focused Knowledge Objects such as correlation searches, notable events, dashboards, etc. 
  • 4+ years of operational AWS usage including knowledge and analysis of CloudTrail, CloudWatch, GuardDuty, Trusted Advisor, and WAF logs. 
  • Extensive operational experience analyzing security detections, performing investigations, and conducting incident response in multi-cloud (AWS/GCP/Azure) environments – working knowledge of the implications in a microservices architecture (EKS/GKE) is a big plus.
  • Solid working knowledge of the MITRE ATT&CK framework and Cyber Kill Chain, and experience developing actionable use cases relevant to the associated TTP's 
  • A demonstrated working knowledge of cloud architecture, infrastructure, and resources, along with the associated services, threats, and mitigations. 
  • Working knowledge of GCP including analysis of Cloud Audit, Security Command Center, and WAF logs
  • Operational experience with EDR/XDR platforms and related analysis and response techniques
  • Solid working knowledge of the Linux OS and common attack methodologies  
  • Experience developing SOPs, incident response plans, runbooks/playbooks for repeated actions, and security operations policies
  • Excellent verbal and written communication skills, including poise in high pressure situations
  • Demonstrated ability to work in a team environment and foster a healthy, productive team culture


  • SANS, Offensive Security, or other top-tier industry recognized technical security certifications focused on analysis, detection, and/or incident response
  • Automation experience leveraging API integrations and SOAR platforms
  • Experience leveraging CSPM solutions to enforce cloud security best practices and enhance detection/analysis fidelity

Pega Offers You:

  • A robust global benefits program including a competitive pay + bonus incentive and Employee Equity in the company
  • An innovative, inclusive, agile, flexible, and fun work environment full of opportunities to learn and grow
  • At Pega, we believe in continuous learning and growth. You will have access to cutting-edge technologies and training resources, allowing you to stay at the forefront of cloud security.
  • Pega's culture fosters collaboration, innovation, and work-life balance. You’ll participate in team-building activities and engage in open discussions during daily/weekly team meetings
  • You will have the flexibility to work remotely when needed, allowing you to maintain a healthy work-life integration
  • Gartner Analyst acclaimed technology leadership across our categories of products


Job ID: 20350

Apply Now

Already have an account? Log in.

Invitation to Self-Identify

Pegasystems Inc. is subject to certain nondiscrimination and affirmative action record keeping and reporting requirements which require Pegasystems Inc. to invite employees and applicants to voluntarily self-identify their gender identity, race/ethnicity, disability status, and veteran status. Submission of this information is voluntary and refusal to provide it will not subject you to any adverse treatment. The information obtained will be kept confidential and may only be used in accordance with the provisions of applicable federal laws, executive orders, and regulations, including those which require the information to be summarized and reported to the Federal Government of civil rights enforcement purposes.

Race and Ethnicity

Please select the ethnicity or race you most closely identify with:

Hispanic or Latino - A person of Cuban, Mexican, Puerto Rican, South or Central American, or other Spanish culture or origin regardless of race.

White (Not Hispanic or Latino) - A person having origins in any of the original peoples of Europe, the Middle East or North Africa.

Black or African American (Not Hispanic or Latino) - A person having origins in any of the black racial groups of Africa.

Native Hawaiian or Other Pacific Islander (Not Hispanic or Latino) - A person having origins in any of the peoples of Hawaii, Guam, Samoa or other Pacific Islands.

Asian (Not Hispanic or Latino) - A person having origins in any of the original peoples of the Far East, Southeast Asia or the Indian Subcontinent, including, for example, Cambodia, China, India, Japan, Korea, Malaysia, Pakistan, the Philippine Islands, Thailand and Vietnam.

American Indian or Alaska Native (Not Hispanic or Latino) - A person having origins in any of the original peoples of North and South America (including Central America) and who maintains tribal affiliation or community attachment.

Two or More Races (Not Hispanic or Latino) - All persons who identify with more than one of the above five races.

I do not wish to disclose - If you choose not to disclose your race/ethnicity, your employer is still required to include such information about you in the EEO-1 Report by using existing employment records or other permitted means to do so.

Disability Status

Form CC-305, OMB Control Number 1250-0005, Expires 4/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years. Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's
  • Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Veteran Status

Why Are You Being Asked to Complete This Form?

This employer is a Government contractor subject to the Vietnam Era Veterans' Readjustment Assistance Act of 1974, as amended by the Jobs for Veterans Act of 2002, 38 U.S.C. 4212 (VEVRAA). VEVRAA requires Government contractors to take affirmative action to employ and advance in employment protected veterans. To help us measure the effectiveness of our outreach and recruitment efforts of veterans, we are asking you to tell us if you are a veteran covered by VEVRAA. Completing this form is completely voluntary, but we hope you fill it out. Any answer you give will be kept private and will not be used against you in any way.

For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at

How Do You Know if You Are a Veteran Protected by VEVRAA?

Contrary to the name, VEVRAA does not just cover Vietnam Era veterans. It covers several categories of veterans from World War II, the Korean conflict, the Vietnam era, and the Persian Gulf War which is defined as occurring from August 2, 1990 to the present.If you believe you belong to any of the categories of protected veterans please indicate by checking the appropriate box below. The categories are defined on the next page and explained further in an “Am I a Protected Veteran?” infographic provided by OFCCP.

What Categories of Veterans Are “Protected” by VEVRAA?

“Protected” veterans include the following categories: (1) disabled veterans; (2) recently separated veterans; (3) active duty wartime or campaign badge veterans; and (4) Armed Forces service medal veterans. These categories are defined below.

  1. A “disabled veteran” is one of the following:
    1. a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
    2. a person who was discharged or released from active duty because of a service-connected disability.
  2. A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
  3. An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
  4. An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.
  • 8 characters minimum
  • 1 number
  • 1 special character (!@#%$*+.)
  • 1 lowercase character
  • 1 uppercase character
By providing a password, you will become a Pega Digital Community Member and be able to track your application status

Required, allowed file types are DOC, DOCX, PDF, TXT (2MB max)

By clicking "Submit Application" I agree that I have read and agree to Pegasystems Privacy and Security Policy, Terms of Use, and Candidate Privacy Notice. If at any time I would like to opt-out of receiving text messages, I can text "stop" after receiving a text message from Pegasystems.

Inclusion and Diversity – Inclusive is one of our values at Pega. Pegasystems is committed to inclusion and diversity and strives to foster a fair and inclusive environment for all. We believe Pega can achieve more when we create a culture that inspires each of us to fully contribute each and every day. We encourage diverse thinking and collaboration for better outcomes for all. Learn more about our inclusive culture.

We encourage candidates of all backgrounds and skillsets to consider opportunities at Pega. At Pega, we focus on the skills needed to be successful and we know that our employees can thrive even if they don't possess a traditional background. If you like the sound of this role, but are not sure if you are the right person, please consider applying. We would love to hear from you!

As an Equal Opportunity and Affirmative Action employer, Pegasystems will not discriminate in its employment practices due to an applicant's race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, veteran or disability status, or any other category protected by law.

Accommodations – If you require reasonable accommodations under the Americans with Disabilities Act (US only) or comparable regional regulations in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please contact us here or contact (US only) 1-888-PEGA-NOW and/or 225 Wyman Street Waltham, MA 02451 ATTN: Benefits.

Labor Condition Applications
GDPR Candidate Privacy Notice
Pegasystems Limited UK Gender Pay Gap Statement
EEO/AA Policy Statement
Know Your Rights: Workplace Discrimination is Illegal
Pay Transparency Policy Statement
Your Employee Rights Under the Family and Medical Leave Act
E-Verify Notice
Employee Polygraph Protection Act Rights

Partager cette page Share via x Partager via LinkedIn Copie en cours...