Information Technology Security Analyst

Job Description

We are looking for a Cybersecurity Analyst to strengthen our Information Security team. This role will focus on threat monitoring, risk assessment, incident response, compliance, and overall improvement of our security posture across on-prem, cloud, and email environments.

Technical Skills

• SIEM platforms (e.g., Microsoft Sentinel, Rapid7 InsightIDR)
• EDR/XDR tools (e.g., Microsoft Defender for Endpoint,)
• SOAR platforms for automated response
• DLP solutions (e.g., Microsoft Purview)
• CASB tools (e.g., Microsoft Defender for Cloud Apps)

• Strong understanding of network protocols, TCP/IP, DNS, DHCP, etc.
• Firewall, IDS/IPS, and VPN configuration and monitoring
• Familiarity with network segmentation, Zero Trust architecture

• Securing Azure, AWS, or Google Cloud environments
• IAM, cloud encryption, cloud workload protection
• Monitoring and compliance in SaaS, PaaS, and IaaS

• Log analysis and correlation
• Memory dumps and packet captures
• Familiarity with tools like FTK, Wireshark

• Anti-phishing and anti-spam tools (Mimecast, Proofpoint, Microsoft Defender for Office 365)
• Email header analysis and malware sandboxing
• Email encryption and DLP policy management

• Vulnerability scanners (e.g., Nessus, Rapid7 InsightVM)
• Pen testing basics and red team vs blue team methodologies
• Secure coding awareness (optional if role overlaps with AppSec)

• ISO 27001, NIST CSF, GDPR, HIPAA understanding
• Risk assessment frameworks (e.g., FAIR)
• Policy and audit documentation

• Root cause analysis
• Threat modeling and risk analysis
• Incident triage and prioritization

• Clear written documentation (e.g., incident reports, SOPs)
• Ability to explain technical findings to non-technical stakeholders
• Team collaboration and cross-functional communication
• Proactive, calm under pressure, and detail-oriented

• PowerShell or Python for log parsing, scripting, and automation
• Basic understanding of automation in SOAR or custom playbooks

Candidate Qualification:

Bachelor&aposs degree in Computer Science, Information Technology, or a related field.

Certifications: Relevant certifications such as CompTIA Security+, CSA, CTIA, CSAP, CISA, CEH, OSCP