Cyber Security Analyst (6 month contract)

About The Position

Requirements

• Microsoft Defender for Endpoint Required - hands-on deployment and policy management
• Microsoft Defender for Cloud Required - cloud posture management and workload protection
• Microsoft Defender for Office 365 Required - email threat protection and configuration
• Microsoft Azure Security Required - environment hardening and configuration management
• KnowBe4 LMS Required - campaign configuration, reporting, and administration
• Security Incident Response Required - triage, investigation, and escalation

Nice To Haves

• Microsoft Sentinel Preferred - SIEM configuration and detection rule development
• Microsoft Purview Preferred - data classification and compliance policies
• Compliance Frameworks (ISO, HITRUST, SOC 2, PCI) Preferred - evidence gathering and audit support familiarity
• Vanta GRC Platform Preferred - entitlement reviews and audit evidence collection

Responsibilities

• Configure and optimize Microsoft Defender for Endpoint across managed devices
• Manage Microsoft Defender for Cloud policies, alerting, and cloud posture recommendations
• Configure and tune Microsoft Defender for Office 365 to strengthen email threat protection
• Respond to Defender alerts; perform triage, investigation, and escalation as appropriate
• Document configuration baselines and policy decisions for operational continuity
• Configure, launch, and administer all nine CY2026 mandatory training campaigns in the KnowBe4 platform, including: Security Awareness (phishing simulation + training modules) Hostile Work Environment, Sexual Harassment Prevention, and DEI 0 Data Privacy, HIPAA Compliance, and PCI DSS Awareness 0 Secure Coding Practices and Know Your Customer (KYC)
• Manage enrollment, completion tracking, and reporting for all campaigns
• Configure and execute phishing simulation campaigns; analyze results and report trends to the CISO
• Serve as primary KnowBe4 platform administrator for the duration of the engagement
• Assess the current Azure security posture and document gaps against best practices
• Remediate misconfigured resources, excessive permissions, and outstanding policy exceptions
• Configure and optimize Microsoft Sentinel (SIEM) and Microsoft Purview
• Maintain Azure security hygiene and contribute to environment hardening initiatives
• Assist with security incident detection, triage, and response activities under CISO direction
• Support evidence gathering and preparation for scheduled compliance audits (ISO 27001, ISO 42001, HITRUST r2, SOC 2 Type II, HIPAA/HITECH, PCI DSS, TX-RAMP)
• Conduct user entitlement reviews and access certification workflows within Vanta GRC; document and remediate identified over-provisioning or access exceptions
• Assist with audit evidence collection, control testing, and remediation task tracking in Vanta GRC
• Assist with periodic vulnerability scanning
• Document security procedures, runbooks, and configuration standards to reduce technical debt
• Support security review of new technology deployments and integrations as required

Benefits

• Unlimited Vacation for exempt employees
• Paid Holidays
• Competitive medical, dental & vision insurance for employees and their dependents
• 401K Retirement Plan
• Stock Options
• Company-paid life insurance
• Health & Flexible Savings Accounts
• Cell phone, gym, and internet reimbursement
• Paid Parental Leave
• Tuition Reimbursement
• Employee Assistance Program (EAP)
• Free snacks (Denver, and or Fort Lauderdale)
• Fun events (virtual and in-person)