Job Description

The Senior Information Security Analyst is responsible for monitoring, analyzing, and responding to cybersecurity threats across enterprise IT and (as applicable) ICS/OT environments. This is a SOC-focused role supporting day-to-day security monitoring, incident response, threat detection, and continuous improvement of detection and response capabilities.

This role serves as the primary internal escalation point for the Managed Service Provider (MSP), providing tier-4 technical support for high-severity and complex investigations, validating findings, directing response actions, and ensuring timely, high-quality communications to stakeholders.

Responsibilities:

• Serve as the senior technical escalation point for complex investigations and response activities across IT and ICS/OT environments.
• Act as the internal escalation for the Managed Service Provider: review escalated cases, confirm scope/impact, request additional evidence as needed, and drive the investigation to resolution.
• Define and maintain escalation criteria, severity definitions, and evidence requirements to ensure consistent performance.
• Perform quality reviews of Managed Service Provider incident tickets (timeliness, analysis depth, documentation, and recommendations) and provide feedback.
• Mentor SOC analysts through coaching, investigation walk-throughs, and after-action reviews; contribute to skills development and knowledge transfer.
• Provide technical guidance on investigation methodology, evidence collection, and response actions.
• Partner with IT, and OT operations teams to embed security controls and logging requirements across systems and services.
• Provide technical input on policy development, control design, and remediation planning based on observed threats, incidents, and detection gaps.
• Review and validate operational metrics for assigned areas (e.g., alert quality, false positives, detection coverage, response timelines) and recommend improvements.
• Ensure investigations and response activities align with business priorities and applicable regulatory requirements; support audits and evidence requests as needed.
• Contribute to the maturity of threat intelligence, threat hunting, incident response, and purple teaming by identifying gaps, proposing enhancements, and implementing improvements within assigned scope.
• Drive continuous improvement of security operations playbooks, procedures, and team readiness through lessons learned and regular reviews.
• Provide technical ownership for assigned security services and platforms to ensure reliability and scalability.
• Manage assigned incident workload and Managed Service Provider escalations by ensuring security incidents and events are identified, analyzed, documented, and driven to closure within defined timelines.
• Coordinate with the Managed Service Provider on active investigations (e.g., evidence requests, containment steps, and status updates) and participate in regular service reviews to address trends and recurring issues.
• Recommend security controls to protect information systems based on ongoing reviews of security incidents, vulnerabilities, and threats.
• Stay up to date with the latest threats, vulnerabilities, and security trends and make recommendations for improving our security posture.
• Candidate must be available 24/7/365

Qualifications & Experience

• Bachelors in one of the following disciplines: Cybersecurity, Information Assurance, Management Information Systems, Computer Science, Computer Engineering, Electrical Engineering or similar technical field and minimum of 5 years related experience.
• Strong knowledge of security technologies and tools, including SIEM, IDS/IPS, firewalls, and endpoint protection.
• Experience with event handling, incident response and threat hunting.
• Ability to communicate effectively with various levels of technical expertise or non-expertise (written, verbal, presentation skills).
• Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.
• Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts.
• Experience with ICS network monitoring including serial, Ethernet, wireless, etc.
• Working knowledge of cybersecurity policies, standards, and frameworks (CIS, NIST, etc.) related to IT environments
• Experience with operational technology and knowledge of ICS security best practices.
• Relevant certifications such as CISSP and CISM are highly desirable.

#LI-GT1

Location

Rochester, New York

Additional Locations

Chicago, Illinois, San Antonio, Texas

Job Type

Full time

Job Area

Information Technology

The salary range for this role is:

$96,700.00 - $148,100.00

This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. Our compensation is based on cost of labor. For remote locations or positions open to multiple locations, the pay range may reflect several US geographic markets, including the lowest geographic market minimum to the highest geographic market maximum. We may ultimately pay more or less than the posted range, and the range may be modified in the future. An employee’s pay position within the salary range will be based on several factors including, but not limited to, the prevailing minimum wage for the location, relevant education, qualifications, certifications, experience, skills, seniority, geographic location, performance, shift, travel requirements, sales or revenue-based metrics, any collective bargaining agreements, and business or organizational needs. At Constellation Brands, it is not typical for an individual to be hired at the high end of the range for their role, and compensation decisions are dependent upon the facts and circumstances of each position and candidate. We offer comprehensive package of benefits including paid time off, medical/dental/vision insurance, 401(k), and any other benefits to eligible employees.

Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.

Equal Opportunity

Constellation Brands is committed to a continuing program of equal employment opportunity. All persons have equal employment opportunities with Constellation Brands, regardless of their sex, race, color, age, religion, creed, sexual orientation, national origin or citizenship, ancestry, physical or mental disability, medical condition (cancer or genetic characteristics), marital status, gender (including gender identity or gender expression), familial status, military or veteran status, genetic information, pregnancy, childbirth, breastfeeding, or related conditions (or any other group or category within the framework of the applicable discrimination laws and regulations).