Security Analyst

We are looking for a diligent and forward-thinking Cybersecurity Analyst to become a key member of our expanding team. In this vital role within our security department, you will be instrumental in protecting our organization's digital assets, managing security threats, and ensuring adherence to industry regulations. This position presents an excellent opportunity to make a significant contribution to our developing security strategy. Exceptional communication abilities are essential. Furthermore, the ideal candidate will possess experience with Microsoft 365, Azure AD, Cloud IaaS platforms, Mobile Device Management (MDM), Okta, and other standard business tools.

What You Will Have:

• A minimum of 4 years of experience in Cybersecurity within an enterprise setting.
• Familiarity with vulnerability management tools (e.g., Nessus, Qualys, InsightVM).
• Hands-on experience with endpoint detection and response (EDR) solutions (e.g., CrowdStrike, SentinelOne).
• A strong understanding of TCP/IP, DNS, and VPNs.
• The ability to analyze network traffic using tools such as Wireshark.
• Knowledge of firewall and Intrusion Detection/Prevention System (IDS/IPS) configurations.
• Understanding of network segmentation and hardening methodologies.
• Hands-on experience in responding to and analyzing security incidents.
• Familiarity with frameworks like MITRE ATT&CK.
• Understanding of frameworks such as NIST, ISO 27001, or CIS Controls.
• Familiarity with compliance requirements (e.g., HIPAA, GDPR, PCI-DSS).
• Robust problem-solving and analytical skills.
• Excellent communication and documentation capabilities, with a particular talent for translating technical findings to business stakeholders.

What Would Be Beneficial:

• Experience with cloud security tools and environments (e.g., AWS, Azure, GCP).
• Scripting experience with Python, PowerShell, or Bash for automation purposes.
• Knowledge of Security Orchestration, Automation, and Response (SOAR) platforms for incident response automation.
• Certifications such as CompTIA Security+, CEH, CySA+, or GIAC GSEC.
• Exposure to malware analysis and digital forensics tools (e.g., EnCase, FTK).

Your Role Overview:

• Actively monitor and respond to security alerts and incidents utilizing SIEM and EDR tools.
• Conduct vulnerability assessments and contribute to remediation planning.
• Analyze threat intelligence feeds to identify and mitigate potential risks.
• Audit existing environments to ensure compliance and visibility.
• Assist in maintaining and enhancing the organization's adherence to relevant security frameworks and regulations.
• Collaborate with cross-functional teams to implement security best practices.
• Create and maintain security documentation, including incident reports and risk assessments.
• Contribute to employee security awareness training and phishing simulations.

What You Bring:

This role requires onsite and remote work, operating in a 24x7 environment with daytime or evening shifts, including scheduled and on-call duties. It's an excellent opportunity for individuals looking to advance their cybersecurity careers while contributing to a security-conscious organization. We are committed to fostering a supportive and innovative work environment where you can excel.