Security Analyst

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent professional experience.
• 2+ years of experience in a security analyst or similar cybersecurity role.
• Experience with or exposure to security platforms such as SentinelOne MDR/EDR/Vulnerability Management, ThreatLocker, KnowBe4 Security Awareness Training/PhishER, and 1Password.
• Familiarity with cybersecurity frameworks and standards such as NIST, CIS, or ISO 27001.
• Knowledge of incident response processes, log analysis, threat hunting, vulnerability management, and endpoint security practices.
• Hands-on experience with Microsoft 365 security administration, including Microsoft Defender for Office 365, Exchange Online Protection, Azure Active Directory, Conditional Access, and Microsoft Purview; familiarity with Microsoft Secure Score and the Microsoft 365 Defender portal is strongly preferred.
• Experience with email security and mail filtering technologies, including Microsoft Defender for Office 365, Exchange Online Protection (EOP), anti-spam/anti-phishing policy configuration, and/or third-party mail filtering solutions (e.g., Proofpoint, Mimecast, Barracuda).
• Strong analytical and problem-solving skills with the ability to troubleshoot complex security issues.
• Strong written and verbal communication skills, including the ability to explain technical concepts to non-technical users.
• Detail-oriented with strong organizational skills and a focus on accuracy in security monitoring, reporting, and documentation.
• Ability to work both independently and collaboratively in a team-oriented environment.

Nice To Haves

• Relevant cybersecurity certifications such as Security+, CySA+, SC-200, SC-900, or similar.
• Experience working in a managed services or managed security services environment.
• Exposure to client-facing communication, ticket-based workflows, and multi-environment security operations.
• Security monitoring and alert triage
• Incident response and investigation
• Vulnerability identification and remediation support
• Phishing analysis and end-user security education
• Endpoint protection and application control
• Communication and cross-functional collaboration
• Documentation and reporting
• Continuous learning and adaptability
• Microsoft 365 security administration and management

Responsibilities

• Monitor security alerts, configurations, and system activity across multiple security platforms to identify and respond to potential threats.
• Utilize SentinelOne MDR/EDR to support alert triage, endpoint investigation, threat detection, and incident response activities.
• Leverage SentinelOne Vulnerability Management to identify, assess, prioritize, and support remediation of vulnerabilities across managed environments.
• Assist with the administration and support of ThreatLocker, including policy management, application allowlisting, and endpoint protection controls.
• Support the company’s security awareness program through KnowBe4 Security Awareness Training, including campaign execution, user follow-up, and reporting.
• Review, analyze, and respond to phishing-related events using KnowBe4 PhishER, including triage, escalation, and coordination of remediation activities.
• Conduct routine security reviews, configuration audits, and maintenance activities to improve security posture and support compliance objectives.
• Respond to security incidents by investigating alerts, analyzing logs, coordinating containment efforts, and assisting with remediation.
• Monitor and evaluate risky user behavior and provide guidance to employees and clients on security best practices.
• Perform proactive threat-hunting and risk identification activities using available tools and security data sources.
• Communicate emerging threats, vulnerabilities, and security trends to internal teams and leadership as appropriate.
• Collaborate closely with infrastructure, network, server, Microsoft 365, DevOps, and other teams to ensure security controls and best practices are consistently applied.
• Administer and monitor Microsoft 365 security features, including Microsoft Defender for Office 365, Exchange Online Protection, Conditional Access policies, and Microsoft Secure Score to strengthen the organization’s security posture.
• Investigate and remediate email-based threats using Microsoft Defender for Office 365 and mail filtering tools, including analysis of phishing campaigns, malicious attachments, spoofing attempts, and mail flow anomalies.
• Document incidents, findings, recommendations, and remediation efforts in a clear and professional manner.
• Participate in regular client and internal review discussions related to security performance, trends, and process improvement.
• Support additional security and operational initiatives as assigned.

Benefits

• Training Opportunities: We believe in lifelong learning and provide numerous avenues for skill enhancement.
• Fully Invested 401K Plan: We help secure your future with a fully invested 401K plan.
• PPO and HDHP Medical Plans: Choose the health insurance program that best fits your needs.
• Employer-Paid Dental and Vision Plans: We cover dental and vision plans, ensuring our employees have access to comprehensive health care.
• Onsite Fitness Center: Stay fit and healthy with our state-of-the-art fitness center.
• Wellness Program: We promote a healthy lifestyle with our wellness program.
• Catered Lunches: Enjoy delicious catered lunches regularly.