The Cybersecurity Analyst is responsible for monitoring, detecting, investigating, analyzing, and responding to security events to protect company assets, including networks, systems, and data. This role involves proactive threat hunting, incident response, and the implementation of security measures to safeguard against unauthorized access, cyber-attacks, and data breaches.
Monitor security alerts and events using SIEM (Security Information and Event Management) tools.
Review logs and network traffic for signs of suspicious activity.
Investigate potential security incidents and escalate as needed.
Perform threat hunting to proactively detect vulnerabilities and threats.
Update and maintain antivirus, endpoint protection, and other security tools.
Respond to phishing attempts and other user-reported security issues.
Conduct vulnerability scans and assist in patch management coordination.
Document incidents, findings, and resolution steps in detail.
Collaborate with IT teams to implement security controls and solutions.
Assist in developing and maintaining security policies, procedures, and best practices.
Conduct risk assessments and compliance audits (e.g., ISO 27001, NIST, GDPR).
Participate in red team/blue team exercises and penetration testing.
Provide cybersecurity awareness training to employees.
Stay current on evolving threats and industry trends by reviewing threat intelligence feeds and security bulletins.
Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field (or equivalent experience).
Certifications such as CompTIA Security+, CEH, CISSP, or GIAC preferred.
Knowledge of firewalls, IDS/IPS, antivirus, and endpoint security solutions.
Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.
Strong analytical, problem-solving, and communication skills.
