Cybersecurity Analyst

About The Position

Requirements

• Familiarity with cybersecurity frameworks and standards (e.g., NIST CSF, NIST 800-61 incident response guidelines, ISO 27001, CIS Critical Controls) is a plus.
• 1-2 years of IT experience preferred (help desk, system administration, networking, or security). Equivalent education, internships, or projects will also be considered.
• Strong knowledge of networking, infrastructure, and application technologies.
• Familiarity with compliance and privacy controls (e.g., PCI, GDPR, SOX) is a plus.
• Strongly Preferred certifications: Security+, CySA+, GIAC GSEC or equivalent.
• Ability to work independently and collaboratively across various business units.
• Basic understanding of how Cybersecurity supports business processes and risk management.
• Hands on experience or exposure to an EDR, SIEM, email security, vulnerability management tool, security ratings platform, and a ticketing system is a plus.
• Exposure to cloud security (especially in Azure; e.g., monitoring Azure workloads, using cloud security tools) is highly desirable.
• Basic scripting ability (PowerShell, Python, or Bash) or a strong interest in learning automation is highly desirable.
• Understanding of core operating system internals (Windows, Linux, macOS) and network protocols (TCP/IP, DNS, HTTP/S) is a plus.

Responsibilities

• Conduct daily reviews of cybersecurity systems, investigating incidents and tracking trends.
• Assist with cybersecurity initiatives and projects to enhance cyber maturity and execute the annual cybersecurity roadmap.
• Support a continuous incident monitoring program to identify, detect, contain, remediate, and recover from attacks.
• Collaborate with cross-functional teams to ensure appropriate incident response and threat mitigation.
• Assist with maintaining security policies, procedures, and guidelines.
• Stay informed on industry developments, new threats, and evolving security solutions.
• Perform in-depth analysis of security vulnerabilities and ensure compliance with audit and regulatory standards.
• Support automation of recurring security tasks using scripting or orchestration platforms.
• Develop controls to mitigate identified security concerns.
• Recommend additional security solutions or improvements to enhance enterprise security.
• Manage remediation efforts to assess security incidents, gauge impact, and preserve evidence.
• Collaborate with analysts, engineers and administrators to implement security hardening on endpoints, servers, and cloud workloads.
• Ensure security controls and incident response processes align with the NIST Cybersecurity Framework and other relevant standards.
• Perform root cause analyses and reporting for incident investigations.

Benefits

• Employee benefits package including health insurance, retirement plans, and paid time off.