Job Summary

We’re seeking a Junior Cybersecurity Analyst to help protect our users, data, and systems through hands-on alert triage, endpoint hygiene, data protection enforcement, and incident response support. This role is ideal for someone who has technical IT experience and is looking to hone their experience in Cybersecurity, is detail-oriented, eager to learn, and ready to grow from running playbooks to help build detections and process improvements.

Job Responsibilities

• Investigate & Triage SIEM/XDR alerts and contain low-complexity incidents efficiently.
• Monitor anomalous logins and assist with emergency access revocation.
• Manage and troubleshoot access requests and enforce security policy.
• Perform malware/IOC removal and suspicious file cleanup across user endpoints.
• Validate vulnerability scanner findings and track remediation tickets.
• Deploy and validate endpoint protection on unmanaged systems.
• Validate EDR agents for health and re-onboard offline/compromised endpoints.
• Block malicious indicators of compromise (IOCs).
• Support third party security investigations, coordinate outreach, and containment actions.
• Review and triage DLP alerts, coach users on safe data handling.
• Support and perform pre-deployment testing for security-related changes.
• Educate users on email threats, phishing risks, and software vulnerabilities.
• Generate and deliver weekly/monthly dashboards and compile accurate reports.
• Collaborate with other teams to understand business functions and tie business needs to security operations.
• Other duties as assigned.

Job Requirements

• Associates degree or equivalent demonstrated experience.
• 2-3 years minimum technical IT and/or Cyber experience.
• Basic knowledge of security principles, practices, and technologies.
• Familiarity with security tools such as SIEM, firewalls, intrusion detection/prevention systems, antivirus software, and vulnerability scanners.
• Strong analytical and problem-solving skills.
• Good communication and interpersonal skills.
• Willingness and ability to analyze, research, and understand logs from various sources.
• Familiarity with core enterprise technologies and processes (e.g. Active Directory, EntraID, Servers, Endpoints, Networking).
• After-hours availability to support as needed for security alerts and incidents.
• Willingness to learn and ability to complete additional training related to information security, IT administration, management, and security tools/procedures.

Nice to haves

• Other relevant hands-on certifications and hands-on training are a plus (e.g. CompTIA Security+, CompTIA CySA+, THM SAL1, HTB CJCA).
• Networking/Infrastructure Experience.