Cybersecurity Analyst

Overview

Wrench Group is seeking a Cyber Fusion Analyst who plays a critical role in Wrench Group's Cybersecurity, Privacy, and Governance program. Reporting to the Director, Cybersecurity, Privacy and Governance, this role is responsible for monitoring, investigating, and responding to security alerts, supporting SOC operations, and managing advanced security tools to protect the organization's digital assets and ensure it can uphold legal obligations.

This position requires exceptional analytical skills to interpret complex threat data, identify patterns, and anticipate adversarial tactics. A thorough understanding of the cybersecurity attack and kill chain is critical to enable proactive defense strategies and effective incident response. This role also demands strong collaboration across IT, managed security services, and business units to drive continuous improvement in detection, response, and overall security posture.

Please note: We are interested in every qualified candidate who is eligible to work in the United States. However, we are not able to sponsor visas needed now or in the future.

Wrench Group is a national leader in home repair, replacement, and maintenance services specializing in heating, ventilation, and air conditioning, plumbing, water, and electrical services. Our partner locations have built strong reputations with brands dating back to the 1940s. At Wrench Group, we are a group of like-minded individuals focused on achieving the highest customer satisfaction possible through our strong network of technicians, sales, customer service, and support staff. Our business model looks to partner with organizations that have great leadership and proven winning cultures. The focus is on supporting businesses with a proven track record to help them accelerate growth and deliver customer thrill at every touchpoint.Â

What's In It For Me?

• Competitive Compensation ($100,000 - $1150,000 based on experience)
• Bonus Eligibility based on performance metrics
• PTO: Unlimited with Supervisor partnership
• Health, Vision, and Dental plans for you and your family to choose from
• 401K Retirement Plan: The Company will match 30% up to the first 6% of your
  
  

contributed amount

• Life Insurance, Short-Term and Long-Term Disability
• Special Program Options: FSA, EAP, Legal Services, and Identity Theft
• Working in a dynamic, collaborative, and fun environment
• Coached and supported career growth through Wrench University
  
  

Responsibilities

What Will I Do?

Security Operations & Incident Response

• Review, triage, and investigate security alerts from SIEM and detection platforms; including monitoring, analyzing, and responding to security alerts and incidents in real time.
• Provide Tier 2 SOC support, collaborating with Tier 1 analysts and engineering teams to resolve complex security incidents.
• Release quarantined or trapped emails after appropriate validation, ensuring compliance with security policies.
• Document findings, actions, and remediation steps in accordance with internal procedures.
  
  

Security Tooling, Engineering & Automation

• Manage and engineer security tools (Darktrace, Cylance, Microsoft Defender for Endpoint, Rapid7, etc.), including configuration, tuning, and integration.
• Develop and maintain automation scripts and playbooks to enhance detection and response capabilities.
• Monitor and ensure proper telemetry and data flow into SIEM for effective alerting and reporting.
• Participate in continuous improvement of detection rules and processes to reduce false positives and improve response times.
  
  

Legal Hold, Governance & Confidentiality

• Support the implementation and management of legal hold processes, ensuring preservation of relevant data in response to HR, Legal, or regulatory requests.
• Handle sensitive HR and Legal matters with the utmost discretion, maintaining strict confidentiality and following established protocols.
• Collaborate with HR and Legal teams to ensure compliance with legal hold requirements and other data governance obligations.
  
  

Reporting & Stakeholder Communication

• Develop and deliver clear, actionable cybersecurity reports tailored for executive leadership, management, and operational teams, ensuring insights are accessible and relevant at all levels of the organization.
  
  

Professional Practice & Operational Effectiveness

• Stay current on emerging threats, vulnerabilities, and best practices in cybersecurity.
• Efficiently manage multiple tasks and priorities in a dynamic environment.
• Perform other job-related duties as assigned
  
  

Qualifications

Do I Have What it Takes?

• Bachelor's degree or equivalent in Cybersecurity, Information Technology, or related field.
• 3+ years of experience in SOC operations, cyber threat analysis, or a similar role.
• Hands-on experience with Darktrace, Cylance, MDE, Rapid7, and SIEM platforms.
• Strong understanding of email security, endpoint protection, and network monitoring.
• Familiarity with scripting (i.e., PowerShell, Python) for automation is a plus.
• Demonstrated ability to handle confidential information with discretion, particularly in matters involving HR and Legal departments.
• Experience supporting legal hold or eDiscovery processes is a plus.
• Excellent written, verbal, and interpersonal communication skills.
• Ability to analyze and solve problems independently and as part of a team.
• Interest in continuous learning and professional development in cybersecurity.
• Relevant certifications (Security+, CySA+, etc.) are a plus, but not required.
• Awareness of legal and industry requirements (e.g., CCPA/CPRA, PCI) and security frameworks (CIS 8.0, NIST C
  
  

SF).