Cyber Focus AI is not hiring for this role, but we're helping Southern New Hampshire University find a talented Information Security Analyst I. This role involves threat detection, monitoring, and incident response in a multifaceted enterprise technology ecosystem.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Nice to Have
Job Description
Cyber Focus AII's mission is to help cybersecurity professionals discover cutting-edge opportunities in their field. We are not a staffing firm or agency. Cyber Focus AI does not hire for these roles—we use advanced technology to locate and verify them from actual employers.
Southern New Hampshire University is a team of innovators. World changers. Individuals who believe in progress with purpose. Since 1932, our people-centered strategy has defined us - and helped us grow a team that now serves over 180,000 learners worldwide.
Our mission to transform lives is made possible by talented people who bring diverse industry experience, backgrounds and skills to the university. And today, we're ready to expand our reach. All we need is you.
Make an impact - from near or far
At SNHU, you'll have the option to work remotely in the following states: Alabama, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, Maryland, Massachusetts, Michigan, Mississippi, Missouri, Nebraska, New Hampshire, New Mexico, North Carolina, North Dakota, Ohio, Oklahoma, South Carolina, South Dakota, Tennessee, Texas, Utah, Vermont, Virginia, West Virginia, Wisconsin and Wyoming.
We ask that our remote employees have access to a reliable internet connection and a dedicated, properly equipped workspace that is free of distractions. Employees must reside in, and work from, one of the above approved states.
The opportunity
The Information Security Analyst I reports to the Director of Information Security Operations. You will be an important member of the Security Operations Center (SOC) team responsible for threat detection, monitoring, and incident response in a multifaceted enterprise technology ecosystem. You will be responsible for performing security investigations, performing analysis of information security events in a large-scale enterprise ecosystem, and assisting with information security incidents to ensure the protection of SNHU's mission-critical technology resources and institutional information.
You will work 100% remotely from any of our approved states.
What You'll Do
- Respond and perform analysis on security alerts and incidents.
- Support technical investigations of complex or high-severity security threats or incidents.
- Coordinate information security incident response with SNHU's Information Security Incident Response Plan.
- Support the incident response lifecycle and have the analytical mindset needed when it comes to escalated investigations and investigations into novel security incidents.
- Participate in incident containment and eradication activities like endpoint isolation, malware remediation, forensic analysis, malware analysis, community member interviews, and network traffic analysis.
- Work cross-functionally across ITS and all SNHU teams to provide support, guidance, and technical implementations where appropriate, to include triage, containment, and remediation when applicable.
- Analyze digital evidence to identify indicators of compromise, adversary activity, root cause, incident timelines, and attack vector(s).
- Conduct real-time monitoring of security events from multiple sources and use analytical and critical thinking skills to identify, triage, analyze, investigate, and escalate information security events and alerts.
- Help perform investigations in complex or high-severity security threats or incidents.
- Communicate with partners, in a non-technical manner, at all organizational levels as part of incident response and remediation activities.
- Review and help implement standard operational processes for handling common incident types.
- Demonstrate a deep source of ethics, integrity, and confidentiality.
- Can remain calm and function at the highest level during a crisis.
Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
- 2+ years working in a security operations center (SOC), a cybersecurity operations center or on a cybersecurity incident response team.
- Bachelor's degree
- Professional Certification(s): CySA+, Sec+, or relevant certification.
- Understanding of MITRE ATT&CK Framework, Cyber Kill Chain, and cloud security principles.
- Familiarity with basic SIEM technology or EDR tools.
- Experience with IT networking.
- Experience with cloud security.
- Experience with Search Processing Language (SPL) or Kusto Query Language (KQL) with an ability to create complex queries for log analysis and security monitoring.
- Experience with enterprise security tools like Splunk, Tenable, Proofpoint tools, Microsoft Defender components, Office 365 tools, PowerShell, and multiple network tools.
- Experience with Cloud Platforms (Azure), security controls, and assessment techniques.
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
Office Hours: Monday through Friday 8:00am - 4:30pm
Professional office environment. Sedentary work: Requires remaining in a stationary position, often standing or sitting for prolonged periods.<b
#CyberFocusAI
Similar Jobs
Explore other opportunities that match your interests