Monitor security systems and logs (e.g., SIEM, IDS/IPS) for unusual activity and potential threats.
Investigate and respond to security incidents and alerts in real time.
Perform vulnerability assessments and assist in remediation efforts.
Conduct regular audits of systems, networks, and applications to ensure security compliance.
Support implementation and enforcement of security policies, standards, and procedures.
Analyze threat intelligence feeds and recommend appropriate mitigation steps.
Assist in security awareness training and phishing simulations.
Prepare incident reports, risk assessments, and security dashboards.
Collaborate with IT teams on secure configuration and system hardening.
Support compliance initiatives (e.g., ISO 27001, GDPR, HIPAA, NIST).

Bachelor's degree in Information Security, Computer Science, or related field.
2+ years of experience in a security operations or cyber defense role.
Familiarity with security tools such as SIEM (Splunk, QRadar), EDR, IDS/IPS, and firewalls.
Strong understanding of network protocols, operating systems security (Windows/Linux), and access controls.
Working knowledge of incident response, threat analysis, and malware detection.
Ability to assess risks and recommend mitigation strategies.
Strong analytical thinking and communication skills.

Security certifications such as CompTIA Security+, CEH, SSCP, or CISM/CISSP (a plus).
Experience with cloud security (AWS, Azure, or GCP).
Familiarity with scripting (Python, PowerShell) for automating security tasks.
Knowledge of data loss prevention (DLP), encryption, and secure development practices.

Security Analyst