Cybersecurity Analyst

ASRC•Tempe, AZ

6h•Onsite

About The Position

The Cybersecurity Analyst performs professional-level cybersecurity work supporting Security Operations Center (SOC) operations, enterprise security monitoring, remediation tracking, and related risk support activities. This position evaluates security events, analyzes logs and system data, determines appropriate incident escalation, and prioritizes remediation activities within established cybersecurity procedures and operational practices. The role assesses security conditions, coordinates response activities, maintains operational visibility, and provides technical consultation to senior cybersecurity staff regarding matters that may affect security operations and risk management practices.

Requirements

Bachelor’s degree in Cybersecurity, Information Technology, or another related field. (Additional experience may substitute on a year for year basis.)
Three (3) years of experience in cybersecurity or related IT support.
Basic experience with SIEM tools (preferably Splunk) or log analysis concepts to identify and evaluate security events.
Understanding of security monitoring, incident response, remediation tracking, and cybersecurity fundamentals.

Nice To Haves

Familiarity with NIST, CMMC, or similar frameworks preferred.
Proficiency in Microsoft 365 and enterprise IT environments preferred.
Relevant certifications such as Security+ or Network+ preferred.

Responsibilities

Evaluate security events and alerts within the system and related tools to identify potential threats, anomalies, and operational risk indicators.
Develop, tune, and maintain system dashboards, alerts, and reports to support security monitoring and operational decision-making.
Determine appropriate escalation paths for security events based on risk, severity, business impact, and established response criteria.
Coordinate log onboarding, data validation, and troubleshooting of data inputs within the system to maintain effective monitoring coverage.
Maintain and improve SOC documentation related to monitoring coverage, alert logic, escalation criteria, and operational practices.
Analyze security alerts by reviewing logs, event data, and supporting technical information to determine appropriate response actions.
Document incident findings, escalation decisions, remediation status, and supporting evidence in accordance with established security practices.
Apply established runbooks and response procedures while exercising judgment to identify exceptions, escalation needs, and remediation priorities.
Coordinate with IT teams to track remediation activities, validate corrective actions, and communicate outstanding risk or operational concerns.
Provide technical consultation to senior cybersecurity staff regarding incident escalation, remediation prioritization, and recurring security trends.
Coordinate intake, review, and tracking of third-party cybersecurity assessments in alignment with established risk management practices.
Maintain third-party risk records and evaluate documentation completeness, open findings, and remediation status.
Coordinate with internal stakeholders to obtain required assessment information and communicate outstanding vendor risk items.
Track remediation activities related to vendor findings and identify items requiring escalation or additional technical review.
Maintain compliance documentation including SSPs, POA&Ms, evidence records, and related operational security documentation.
Gather, organize, and validate required audit evidence and supporting documentation for cybersecurity and risk management activities.
Interpret and apply organizational security policies and procedures when evaluating security events, remediation status, and documentation requirements.
Work closely with senior cybersecurity staff and IT teams to coordinate security monitoring, incident escalation, and remediation tracking activities.
Prepare SOC reporting, alert trend information, operational metrics, and remediation status updates to support technical review and decision-making.
Communicate findings, risk indicators, and escalation recommendations clearly and professionally to appropriate technical stakeholders.