Lead Cybersecurity Analyst

About The Position

Requirements

• Minimum of 5 years of hands-on experience in cybersecurity operations, analysis, or incident response.
• Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent practical experience.
• Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Outlook).
• Experience working in a Windows environment.
• Proficiency with Microsoft 365 Security, Azure, Defender, Intune, and Tenable platforms.
• Experience with SIEM and SOAR tools for automated detection and response.
• Strong analytical, investigative, and problem-solving skills.
• Excellent verbal and written communication skills for technical and non-technical audiences.
• Ability to manage multiple priorities and medium-sized projects independently.

Nice To Haves

• Prior experience in vulnerability management, SOC operations, or cloud security.
• Experience supporting compliance programs such as CMMC, NIST 800-171, or ISO 27001.
• Industry certifications such as Security+, CySA+, CISSP, or CISM.
• Familiarity with scripting languages (PowerShell, KQL, or Python) for security automation.

Responsibilities

• Lead day-to-day security operations and proactively monitor, identify, prioritize, and respond to security incidents.
• Serve as the primary liaison with the Security Operations Center (SOC) for timely resolution of alerts.
• Manage incident response efforts including triage, root cause analysis, and post-incident review.
• Continuously optimize monitoring technologies (SIEM, SOAR) to improve detection and reduce false positives.
• Support forensic investigations and update procedures based on lessons learned.
• Manage the enterprise vulnerability management program (Tenable, Microsoft Defender).
• Track remediation efforts and enforce SLAs for critical and high vulnerabilities.
• Prioritize risk based on asset criticality and communicate trends to leadership.
• Collaborate with IT teams to ensure a holistic approach to security and continuous improvement.
• Ensure endpoint protection, patch compliance, and encryption enforcement.
• Implement and monitor security configurations across M365, Azure, and Google Cloud.
• Support identity and access management, including MFA, conditional access, and least privilege.
• Contribute to zero-trust initiatives and data loss prevention programs.
• Maintain documentation for security policies, standards, and procedures.
• Support internal and external audits for compliance with CMMC and ISO 27001.
• Lead medium-to-complex cybersecurity projects independently.
• Mentor junior team members and serve as a subject matter expert.
• Recommend and implement process improvements across security operations.

Benefits

• annual bonuses
• profit sharing
• health
• retirement
• wellness
• professional growth programs