Security Analyst

Description

We are seeking a detail-oriented and proactive Cybersecurity Analyst to join our growing company. As part of our security team, you will play a critical role in safeguarding our organization’s information assets, responding to threats, and ensuring compliance with industry regulations. This role offers the chance to have a tangible impact on our evolving security strategy. Exceptional communication skills are a must. Additionally, the ideal candidate will have experience with Microsoft 365, Azure-AD, Cloud IaaS platforms, MDM, Okta, and other common business tools.

You will have:

• Minimum of 4 years experience in CyberSecurity in an enterprise environment.
• Familiarity with vulnerability management tools (e.g., Nessus, Qualys, InsightVM).
• Hands-on experience with endpoint detection and response (EDR) solutions (e.g., CrowdStrike, SentinelOne).
• Strong understanding of TCP/IP, DNS, and VPNs.
• Ability to analyze network traffic using tools like Wireshark.
• Knowledge of firewall and IDS/IPS configurations.
• Understanding of network segmentation and hardening techniques
• Hands-on experience in responding to and analyzing security incidents.
• Familiarity with frameworks like MITRE ATT&CK.
• Understanding of frameworks such as NIST, ISO 27001, or CIS Controls.
• Familiarity with compliance requirements (e.g., HIPAA, GDPR, PCI-DSS).
• Strong problem-solving and analytical skills.
• Excellent communication and documentation abilities, particularly in translating technical findings to business stakeholders.

Good for you to have:

• Experience with cloud security tools and environments (e.g., AWS, Azure, GCP).
• Scripting experience with Python, PowerShell, or Bash for automation.
• Knowledge of SOAR platforms for incident response automation.
• Certifications such as CompTIA Security+, CEH, CySA+, or GIAC GSEC.
• Exposure to malware analysis and digital forensics tools (e.g., EnCase, FTK).

Bird's eye view of your role:

• Actively monitor and respond to security alerts and incidents using SIEM and EDR tools.
• Perform vulnerability assessments and assist with remediation plans.
• Analyze threat intelligence feeds to identify and mitigate potential risks.
• Audit existing environments for compliance and visibility.
• Assist in maintaining and improving the organization’s compliance with relevant security frameworks and regulations.
• Collaborate with cross-functional teams to implement security best practices.
• Create and maintain security documentation, including incident reports and risk assessments.
• Contribute to employee security awareness training and phishing simulations.

This role will work onsite and remote in a daytime or evening shift in a 24x7 environment, including scheduled and on-call work. This is a great role for someone looking to advance their cybersecurity career while contributing to a security-conscious organization. We are dedicated to creating a supportive and innovative work environment where you can thrive.