Cybersecurity Analyst

• Monitors, analyzes, and triages security alerts and events from tools such as SIEM, EDR/XDR, email security, and identity platforms, following documented procedures.
• Conducts initial investigations of security incidents, including log review, basic root cause analysis, and evidence collection, escalating when needed.
• Supports incident response activities by executing assigned response actions and documenting findings, timelines, and outcomes.
• Performs routine vulnerability scanning, validation, and remediation tracking, identifying trends or recurring issues for escalation.
• Assists with access reviews, privileged access monitoring, and IAM-related investigations following policy and approval workflows.
• Contributes to maintaining and improving standard operating procedures, playbooks, and technical documentation.
• Participates in threat intelligence review and applies indicators of compromise (IOCs) to detection tools under guidance.
• Supports security awareness activities, including phishing analysis, reporting metrics, and follow-up actions.
• Uses dashboards and reports to identify patterns or trends in alerts, vulnerabilities, or user behavior, asking questions to build analytical confidence.
• Collaborates with IT, cloud, and business teams to support secure configurations and remediation efforts.
• Provides guidance to Level 1 analysts during routine investigations and shares lessons learned with the team.
• Supports assigned project tasks or portions of larger initiatives, tracking progress and communicating status or risks.
• Participates in tabletop exercises, audits, and compliance activities related to NIST, CIS Controls, and regulatory expectations.
• Performs other related duties as assigned.

• Applies working knowledge of cybersecurity tools, concepts, and processes to complete standard tasks reliably.
• Knowledge of networking, system and Helpdesk operations and security fundamentals.
• Follows established procedures while beginning to anticipate routine issues and suggest small process improvements.
• Demonstrates sound judgment in routine situations and escalates ambiguous or higher-risk issues appropriately.
• Communicates clearly and professionally, explaining findings and asking thoughtful questions.
• Applies a consistent service mindset and understands how cybersecurity supports the member experience.
• Works effectively with others, contributing to a positive and collaborative team environment.
• Adapts to new tools, processes, and ways of working, viewing change as an opportunity for growth.
• Working understanding of cybersecurity frameworks such as NIST CSF and CIS Controls.
• Familiarity with the incident response lifecycle, common attack techniques, and basic threat actor behaviors.
• Practical knowledge of log analysis, alert triage, and detection concepts, including familiarity with MITRE ATT&CK.
• Understanding of compliance requirements and how policies apply in different operational scenarios.
• 2+ years of directly relevant experience in cybersecurity, security operations, or a related technical role.
• Preferred: Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.

Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field.

• medical
• vision
• dental
• life insurance
• disability insurance
• 401(k) plan