Job Summary:
We are seeking a highly skilled and detail-oriented Cybersecurity Analyst to join our IT security team. The ideal candidate will be responsible for protecting our organization’s digital assets by identifying, assessing, and mitigating cybersecurity risks and vulnerabilities. You will play a key role in monitoring security events, responding to incidents, and implementing security best practices.
Key Responsibilities:
* Monitor network traffic, logs, and alerts to detect and respond to potential security threats.
* Analyze security incidents and conduct root cause analysis.
* Perform vulnerability assessments and manage remediation efforts.
* Develop and implement security controls, policies, and procedures.
* Respond to security alerts and escalate incidents as necessary.
* Conduct regular audits and compliance checks (e.g., ISO 27001, HIPAA, PCI-DSS).
* Collaborate with IT and engineering teams to integrate security into system architecture and DevOps pipelines.
* Maintain and operate security tools such as SIEM, IDS/IPS, firewalls, antivirus, and endpoint protection.
* Stay updated on the latest cybersecurity threats, vulnerabilities, and industry trends.
* Participate in penetration testing and red/blue team exercises.
* Provide security awareness training to employees and stakeholders.
Required Skills and Qualifications:
* Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field.
* Solid understanding of network security, application security, and operating system security.
* Experience with security tools such as SIEM (e.g., Splunk, QRadar), IDS/IPS, firewalls, antivirus, DLP.
* Knowledge of common threats and vulnerabilities (e.g., OWASP Top 10, MITRE ATT&CK).
* Strong analytical, problem-solving, and communication skills.
* Familiarity with scripting or automation tools (e.g., Python, PowerShell) is a plus.
Preferred Qualifications:
* Security certifications such as CompTIA Security+, CEH, CISSP, CISM, or GIAC.
* Experience in a Security Operations Center (SOC) environment.
* Understanding of cloud security (AWS, Azure, GCP).
* Familiarity with incident response frameworks and forensic analysis.
* Experience working in regulated environments (e.g., finance, healthcare, government).