IT Cybersecurity - IT Security Analyst

About The Position

Requirements

• BS degree in Computer Science, Engineering or Information Technology or equivalent.
• 3-5 years of experience in a cybersecurity/SOC/IT security operations role with exposure to incident triage, investigation, and coordinated response.
• Working knowledge of security frameworks and control concepts (ISO 27001/27002, NIST 800-53/171, CIS Controls) and how they translate into operational controls.
• Strong written and verbal communication skills; able to explain risk and response steps to end users and stakeholders, produce incident documentation, and present post-incident findings.
• Must be able to travel as needed, sometimes as much as 30%.

Nice To Haves

• Experience with common security tooling is preferred (SIEM, EDR, vulnerability scanning, email security, identity platforms; SOAR a plus).
• Certifications such as Security+, GCIH, GCIA, CEH, SSCP, or equivalent are preferred.

Responsibilities

• Monitor, triage, and investigate security alerts using SIEM and endpoint detection and response (EDR) tooling; validate severity and scope, and document findings.
• Execute and continuously improve incident response processes (prepare, detect, contain, eradicate, recover); develop and maintain playbooks and runbooks for common scenarios (phishing, malware, account compromise, ransomware).
• Perform incident investigation and analysis using logs and telemetry (identity, endpoint, network, cloud); conduct basic packet and host analysis as needed to determine root cause and attacker activity.
• Coordinate incident response with the SOC/MDR provider and internal teams (IT, Infrastructure, HR, Legal, and business stakeholders); ensure timely escalation and handoffs.
• Lead containment and remediation actions (e.g., isolate endpoints, disable accounts, block indicators, reset credentials) and track actions through to closure with clear timelines and ownership.
• Drive post-incident reviews (lessons learned) and implement corrective actions to reduce recurrence, improve detection logic, and strengthen controls.
• Maintain awareness of the current threat landscape and translate threat intelligence into actionable detections, hardening recommendations, and user guidance.
• Support governance and assurance activities including policy/standard reviews, control evidence collection, and third-party risk and audit activities (e.g., ISO 27001, NIST, CIS).
• Create and tune detection content (queries, correlation rules, and indicators) to improve signal quality and reduce false positives in security monitoring tools.
• Perform basic malware triage and forensic collection as needed (e.g., preserve evidence, analyze artifacts, support deeper analysis by internal teams or vendors).
• Engage end users during investigations (e.g., phishing reports, suspicious activity) with clear guidance and empathy; contribute to security awareness initiatives (phishing education, safe computing practices) and incorporate user feedback to improve processes.

Benefits

• Comprehensive and flexible benefit options starting on day one, including medical, dental, vision, EAP, wellness incentives, and 401(k) with employer matching.
• Development & progression opportunities for every employee – regular performance conversations, training and development curriculum, and engineering fellowship programs.
• Paid time off, including vacation, sick time, paid holidays, and parental leave—all eligible on your first day of employment!
• Competitive pay, including eligibility for quarterly and annual bonuses, depending on role and site.