Cybersecurity Analyst

HomeXpress Mortgage CorpSanta Ana, CA
$130,000 - $150,000Hybrid

About The Position

HomeXpress Mortgage is hiring a Cybersecurity Analyst to support day-to-day security operations in a cloud-first environment. This role owns vulnerability management, security monitoring, email defense, and internal security testing. You will work directly with the VP of Cybersecurity and Infrastructure in a regulated lending environment. This is a hands-on operational role. We are looking for someone reliable, detail-driven, and accountable, who takes ownership of recurring work and escalates early when something is off.

Requirements

  • 4+ years in a security operations or analyst role
  • Hands-on experience with a SIEM platform
  • Working knowledge of vulnerability management and remediation tracking
  • Familiarity with cloud identity and Microsoft 365 security tooling
  • Strong written communication and consistent follow-through on recurring tasks
  • Ability to work independently and escalate appropriately
  • Possess the knowledge, skills, and ability to operate an advanced cyber analytical toolkit and perform required assessments.
  • Possess expert knowledge of IT and network systems – both on-prem and SaaS.
  • Experience with firewalls and network technologies.
  • Experience installing, configuring, administering software applications.
  • Demonstrated skills in troubleshooting problems with software and hardware.
  • Experience configuring, managing, and maintaining networking equipment.
  • Experience in Vulnerability Alert processes.

Nice To Haves

  • Experience in a regulated industry, financial services or mortgage a plus
  • Familiarity with email security, DLP, DSPM, or penetration testing tools

Responsibilities

  • Monitor and triage alerts in our SIEM and respond within defined SLAs
  • Participate in incident response, including containment, investigation, and post-incident reporting
  • Build and tune detection rules and use cases to reduce false positives
  • Own vulnerability management across endpoint, cloud, and automated testing sources, tracking remediation to closure
  • Run the internal and external penetration testing program on schedule and report findings
  • Manage email security tooling and confirm malicious senders are blocked
  • Investigate user-reported phishing and take corrective action
  • Operate security awareness phishing simulations
  • Support data loss prevention and data security posture monitoring
  • Support periodic user access reviews and certifications
  • Produce clear daily and weekly findings summaries for leadership
  • Maintain documentation and support audit and regulatory requests
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service