Analyst, Information Security

About The Position

Requirements

• Demonstrated experience triaging and investigating security alerts in one or more of: EDR/XDR, email security, identity systems (AD/Entra ID), network security tools, cloud security monitoring (AWS/Azure), and/or SIEM platforms.
• Strong understanding of attacker tactics and common enterprise threat scenarios (phishing, credential compromise, malware/ransomware, lateral movement, privilege escalation).
• Ability to analyze logs and telemetry; experience writing or modifying queries/rules (e.g., KQL/SPL/SQL-like queries) is strongly preferred.
• Experience executing incident response activities: investigation, containment coordination, eradication support, recovery validation, and post-incident documentation.
• Strong understanding of vulnerability and exposure workflows, including validation and remediation verification.
• Ability to create and maintain runbooks/playbooks and operational documentation.
• Familiarity with security frameworks (e.g., CIS, NIST CSF, ISO 27001) and regulatory standards (e.g., PCI, GDPR, HIPAA).
• Excellent communication and reporting skills for both technical and non-technical audiences.
• Analytical mindset with strong problem-solving capabilities.
• Ability to work independently, prioritize tasks, and collaborate with cross-functional teams.
• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems or equivalent experience.
• 3+ years in cybersecurity roles, Security Operations, Incident Response, threat detection, or related information security roles.
• This position operates in a hybrid working environment, with in-person presence preferred Tuesday, Wednesday, and Thursday (remote work available Monday and Friday, as business needs allow). This position operates in an office setting with prolonged computer / screen time with periods of walking, meeting in conference rooms or other.
• May participate in an on-call rotation and perform after-hours incident response support as needed.
• Ability to travel as needed to Company locations and third-party locations within the US.

Responsibilities

• Proactively monitor and triage security alerts across endpoint, identity, network, cloud, email, vulnerability, and SIEM platforms.
• Detect, investigate, and respond to security incidents; coordinate containment, remediation, root cause analysis, and post-incident reviews.
• Develop, tune, and maintain security detections, alerts, and response playbooks to improve threat visibility and response effectiveness.
• Conduct proactive threat hunting using endpoint, identity, network, and cloud telemetry.
• Manage and support vulnerability and exposure management activities, including risk-based prioritization, remediation tracking, and reporting.
• Maintain and support cybersecurity risk management activities, including risk registers, assessments, and mitigation planning.
• Support governance, risk, and compliance efforts by assisting with audits, control documentation, evidence collection, and third-party risk assessments.
• Administer and optimize security tools and platforms to ensure effectiveness, coverage, and operational reliability.
• Develop and deliver cybersecurity awareness training, including phishing simulations and targeted education initiatives
• Produce and analyze security metrics and operational reports to drive continuous improvement.
• Collaborate effectively with IT, Engineering, and business teams to ensure consistent, efficient security operations.
• Communicate clearly and professionally with stakeholders during incidents and ongoing security initiatives.
• Other duties, responsibilities, and qualifications may be required and/or assigned as necessary.

Benefits

• Health/Rx
• Dental
• Vision
• Flexible and health spending accounts (FSA/HSA)
• Supplemental life insurance
• 401(k)
• Paid time off
• Paid sick time
• Short term & long term disability coverage (STD/LTD)
• Employee stock ownership (ESOP)
• Holiday pay for company designated holidays