Overview Position: Sr. Cybersecurity Analyst Salary: Starting at $124,400/year+ D.O.E *Actual compensation may vary from posting based on geographic location, work experience, education, and/or skill level. Location: Santa Ana, CA (on-site preferred; open to remote candidates located beyond a 31-mile radius) Position Summary: The Sr. Cybersecurity Analyst leads the protection of enterprise systems, networks, and data through advanced monitoring, detection, analysis, and response to security events. This role provides technical leadership to the security operations team, mentors junior analysts, collaborates with engineers, IT, and DevOps teams, and contributes to strategic improvements in threat detection, incident response, and overall security posture in a fast-paced, evolving environment. The position emphasizes hands-on expertise in SOC tools, proactive threat hunting, and team guidance to maintain a resilient defensive capability. *Disclaimer: Identity Verification checks are in place throughout the Candidate journey to prevent candidate fraud Responsibilities Monitoring & Detection - Oversee and perform advanced monitoring of alerts from SIEM, EDR/XDR, IDS/IPS, firewalls, and other security platforms. - Lead triage, escalation decisions, and quality assurance for security events across the team. - Develop, tune, and maintain detection rules; lead proactive threat hunting programs to uncover hidden threats. - Analyze security telemetry trends to identify emerging attack patterns and refine detection strategies. Incident Response Leadership - Lead investigations of complex suspicious activity, conduct in-depth root cause analysis, and coordinate multi-team response efforts. - Direct containment, eradication, and recovery during security incidents; serve as primary escalation point for major events. - Oversee documentation of incidents, findings, lessons learned, and corrective actions in incident management systems. - Develop, refine, and maintain incident response playbooks, procedures, and post-incident review processes. Automation and Integration - Develop scripts and automate routine security tasks using Python, PowerShell, or Bash to improve efficiency. - Collaborate with DevOps to embed security controls in systems, applications, and cloud environments. Mentorship and Collaboration - Mentor and develop junior security analysts and team members through technical guidance, training, and knowledge sharing. - Partner with IT, DevOps, and business teams to implement security best practices across the organization. - Lead or support company-wide cybersecurity awareness initiatives, including phishing simulations and training programs. Thought Leadership - Stay current with emerging threats, attack vectors, defensive techniques, and threat intelligence sources. - Share insights with the team and leadership to drive proactive security enhancements. - Contribute to security program strategy, tool evaluations, and process optimization. Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related discipline (or equivalent work experience). - 4–7+ years of experience in IT security, SOC operations, incident response, or related technical roles (with at least 2 years in a senior or lead capacity preferred). - Strong hands-on experience with SIEM platforms, EDR/XDR, vulnerability scanners, firewalls, and endpoint protection tools. - In-depth knowledge of networking protocols, operating systems (Windows/Linux), authentication mechanisms, and cloud security principles (AWS, Azure, O365). - Excellent analytical, troubleshooting, and problem-solving skills. - Proven ability to lead investigations, mentor team members, and communicate effectively with technical and non-technical stakeholders. - Attention to detail and demonstrate performance under pressure in high-stakes security situations. Education, Experience, and Certifications: - Security certifications such as CompTIA Security+, CySA+, CASP+, CEH, GCIH, GCIA, CISSP, or equivalent. - Scripting proficiency (Python, PowerShell, Bash) for automation, analysis, and orchestration. - Prior experience leading SOC operations, incident response teams, threat hunting programs, or shift supervision. - Familiarity with threat intelligence platforms and frameworks (e.g., MITRE ATT&CK). - Exposure cloud security tools and DevSecOps practices. Key Competencies - Exceptional analytical and strategic problem-solving ability. - Strong leadership and mentorship skills with a team-oriented mindset. - Ability to prioritize tasks, enforce procedures, and make sound decisions in high-pressure environments. - Commitment to continuous learning and passion for threat intelligence and advancing security operations. Work Authorization: Must be able to verify identity and employment eligibility to work in the U.S. This position does not offer visa sponsorship. Other Duties: This job profile is not intended to be an all-inclusive list of job duties and responsibilities, as one may perform additional related duties as assigned in order to meet the needs of the organization. Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Must be able to lift up to ten pounds. Primary functions require sufficient physical ability and mobility to work in an office setting; to stand or sit for prolonged periods of time; to occasionally stoop, bend, kneel, crouch, reach, and twist; to lift, carry, push, and/or pull light to moderate amounts of weight; to operate office equipment requiring repetitive hand movement and fine coordination including use of a keyboard; and to verbally communicate to exchange information. VISION: See in the normal visual range with or without correction. HEARING: Hear in the normal audio range with or without correction. Pay Transparency Disclosure: If based in New American Funding’s offices, this role has the annual base salary range stated below. Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information. New American Funding offers competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave , mental health & wellness benefits, and generous PTO. New American Funding also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. New American Funding’s compensation and benefits are subject to change and may be modified in the future. [EOE/M/F/D/V. Drug-free workplace.] #LI-JS3 #REMOTE

Overview Position: Sr. Cybersecurity Engineer, Platform Salary: Starting at $133,000/year+ D.O.E *Actual compensation may vary from posting based on geographic location, work experience, education, and/or skill level. Location: Santa Ana, CA (on-site preferred; open to remote candidates located beyond a 31-mile radius) Position Summary: The Sr. Cybersecurity Engineer leads the design, implementation, continuous management, and optimization of enterprise security platforms to defend against sophisticated threats in cloud-native, hybrid, and multi-cloud environments. This senior role drives strategic security initiatives—including innovative product evaluations, PoC testing, and tool enablement—integrates AI/ML for proactive defense, mentors junior engineers, and partners closely with IT, DevOps, development, and procurement teams to embed resilient, scalable security throughout the organization. The position demands deep expertise in platform management, automation, AI security, quantum-readiness, threat mitigation, and emerging technology evaluation to sustain a dynamic, proactive security posture. *Disclaimer: Identity Verification checks are in place throughout the Candidate journey to prevent candidate fraud Responsibilities Strategic Security Architecture and Platform Management - Design and implement advanced zero-trust architectures with continuous authentication, verification, micro-segmentation, and identity-centric controls across cloud-native and hybrid environments. - Own the deployment, ongoing management, configuration, optimization, and administration of core security platforms, including next-generation SIEM, EDR/XDR, firewalls, IAM/identity governance, WAF, CSPM, and related tools. - Lead platform lifecycle activities such as performance tuning, policy development, integration enhancements, and capacity planning to ensure reliability, scalability, and alignment with evolving threats. - Develop and maintain multi-year security roadmaps that incorporate emerging threats (e.g., AI-powered attacks, quantum risks, supply chain vulnerabilities) while aligning with business objectives and platform innovation needs. Advanced Threat Detection and Mitigation - Build and refine AI/ML-enhanced detection rules, automated threat-hunting playbooks, and intelligent response orchestration workflows within managed security platforms. - Lead proactive threat-hunting initiatives to detect and neutralize advanced persistent threats (APTs), AI-generated attacks, insider risks, and supply chain compromises. - Integrate real-time threat intelligence feeds and AI-driven analytics to improve detection accuracy, reduce false positives, and enable predictive risk mitigation across platforms. Incident Response - Support complex, high-impact incident response efforts, including containment, forensic analysis using platform telemetry, eradication, recovery, and root-cause investigation. - Conduct post-incident reviews, develop preventive strategies, and deliver executive-level briefings and reports. - Coordinate cross-functional response to incidents and emerging attack vectors. Vulnerability and Risk Management - Oversee enterprise vulnerability management programs, including automated scanning, red team/purple team exercises, and prioritized remediation tracking integrated with security platforms. - Manage risk remediation in collaboration with IT, DevOps, application, and third-party teams, with focus on software supply chain, API security, and platform-specific exposures. - Maintain risk registers, compliance reporting, and quantum-readiness assessments to support evolving regulatory and threat landscapes. Automation and DevSecOps Integration - Automate security controls, workflows, and platform operations using Python, PowerShell, Bash, Ansible, Terraform, and infrastructure-as-code (IaC) tools. - Embed security-as-code practices into CI/CD pipelines, including automated scans for vulnerabilities, secrets management, AI model security, and platform integrations. - Drive scalability, efficiency, and innovation in security operations through AI-augmented automation, continuous platform monitoring, and enablement of self-service security capabilities for development teams. Innovative Product Evaluations and Enablement - Lead evaluation, selection, and enablement of new and emerging security products, technologies, and platforms through structured proof-of-concepts (PoCs), vendor assessments, pilot programs, and comparative testing. - Define evaluation criteria, coordinate cross-functional PoC execution, analyze results against enterprise requirements (e.g., integration feasibility, performance, cost, AI compatibility), and recommend adoption or enhancements. - Facilitate enablement activities, including training, documentation, integration roadmaps, and knowledge transfer to operations, DevOps, and end-user teams to accelerate secure adoption of approved platforms and tools. - Stay ahead of vendor innovations by monitoring market developments and conducting regular technology refresh assessments. Strategic Contributions: - Ensure alignment with NIST, CIS, PCI DSS, SOC 2, HIPAA, CCPA, GDPR, and emerging AI/quantum-related frameworks. - Develop, update, and enforce security policies, standards, and procedures, including AI governance, post-quantum cryptography migration plans, and platform management guidelines. - Lead audit preparation, readiness activities, and responses to internal/external audits. - Mentor cybersecurity analysts, engineers, and cross-functional teams on advanced practices, platform management, AI security, threat trends, and innovative evaluation methodologies. - Partner with IT, DevOps, development, procurement, and business units to integrate security by design across systems, applications, AI initiatives, and new platform deployments. - Contribute to organization-wide cybersecurity awareness, training, and AI ethics programs. Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience. - 5–8 years of progressive cybersecurity experience, including at least 2–3 years in a senior security engineering, architecture, or cloud security role with hands-on platform management. - Expert-level knowledge of SIEM (e.g., Splunk, modern SIEM), EDR/XDR (e.g., CrowdStrike, SentinelOne), next-gen firewalls, IAM, multi-cloud security (AWS, Azure, GCP, O365), and platform administration/optimization. - Expert level knowledge of log aggregation and data management pipelines (Tenzir, Cribl, Observo) - Proficiency in scripting/automation (Python, PowerShell, Bash) and IaC tools (Terraform, Ansible). - Deep understanding of secure architecture, network protocols, Windows/Linux systems, container/Kubernetes security, zero-trust principles, and security product evaluation processes. - Demonstrated leadership in incident response, vulnerability management, threat hunting, platform management, or deploying/evaluating security technologies. - Proven experience conducting PoCs, vendor evaluations, or technology enablement initiatives. - Excellent communication, project management, strategic thinking, and stakeholder influence skills. - Deep understanding of attacker tactics, threat intelligence, and the MITRE ATT&CK framework. Education, Experience, and Certifications: - Advanced certifications such as CISSP, CCSP, CISM, GIAC (GCIA, GCIH), AWS/Azure/GCP Security Specialty, or AI/security-specific credentials. - Hands-on experience with penetration testing tools (Metasploit, Burp Suite, Kali Linux), AI/ML security tools, quantum-safe cryptography concepts, or formal product evaluation frameworks. - Prior experience leading teams, cross-functional projects, AI governance/security initiatives, or security platform procurement/evaluation processes. - Familiarity with supply chain risk management, API security, post-quantum migration planning, and emerging vendor ecosystems. Key Competencies: - Strategic and analytical mindset to align security platforms and innovations with business and emerging tech risks. - Advanced problem-solving for enterprise-scale, AI-augmented threats and platform challenges. - Strong leadership, mentorship, evaluation expertise, and ability to thrive in high-pressure environments. - Commitment to continuous learning, including AI, quantum, cloud-native trends, and security product innovation. Work Authorization: Must be able to verify identity and employment eligibility to work in the U.S. This position does not offer visa sponsorship. Other Duties: This job profile is not intended to be an all-inclusive list of job duties and responsibilities, as one may perform additional related duties as assigned in order to meet the needs of the organization. Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Must be able to lift up to ten pounds. Primary functions require sufficient physical ability and mobility to work in an office setting; to stand or sit for prolonged periods of time; to occasionally stoop, bend, kneel, crouch, reach, and twist; to lift, carry, push, and/or pull light to moderate amounts of weight; to operate office equipment requiring repetitive hand movement and fine coordination including use of a keyboard; and to verbally communicate to exchange information. VISION: See in the normal visual range with or without correction. HEARING: Hear in the normal audio range with or without correction. Pay Transparency Disclosure: If based in New American Funding’s offices, this role has the annual base salary range stated below. Job level and actual compensation will be decided based on factors including, but not limited to, individual qualifications objectively assessed during the interview process (including skills and prior relevant experience, potential impact, and scope of role), market demands, and specific work location. The listed range is a guideline, and the range for this role may be modified. For roles that are available to be filled remotely, the pay range is localized according to employee work location by a factor of between 80% and 100% of range. Please discuss your specific work location with your recruiter for more information. New American Funding offers competitive package of additional benefits, including health, dental & vision, retirement with company contribution, parental leave , mental health & wellness benefits, and generous PTO. New American Funding also offers sales incentive pay for most sales roles and an annual bonus plan for eligible non-sales roles. New American Funding’s compensation and benefits are subject to change and may be modified in the future. [EOE/M/F/D/V. Drug-free workplace.] #LI-JS3 #REMOTE

• Monitor and triage security alerts and events across Microsoft security platforms • Conduct initial investigation and evidence collection for security incidents • Coordinate and track remediation efforts for security findings • Support identity and access security processes • Maintain and improve operational documentation based on trend analysis

CYBERSECURITY ASSESSMENT AND AUTHORIZATION SUBJECT MATTER EXPERT (SME) Position : Remote Serves as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures. Performs a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization. Possess an understanding of how the security controls identified in the NIST 800-53 apply to the process of assessing and authorizing a large organization’s IT infrastructure such as DLA’s, in which there is a compilation of large and small enclaves, AIS applications and outsourced IT processes. Determines the applicable severity value for an identified vulnerability (e.g., non-compliant security control) and determines the possible ramifications on the system’s current or future authorization. Briefs senior management on the progress or results of an information system undergoing the Risk Management Framework (RMF) process. Minimum Requirements: - Five (5) years of relevant Risk Management Framework (RMF) and NIST A&A experience - DOD cybersecurity experience - Experience in assessing security controls and conducting authorization reviews for large, complex organizations. - Experienced in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures, and processes. - Knowledgeable in the cybersecurity of emerging technology areas such as Cloud and Industrial Control Systems (ICSs), warehouse execution systems and - Operational Technology (OT) infrastructures. - DOD Top Secret Clearance and must possess IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) at time of proposal submission. - CERT Personnel: Any team member assigned duties at DLA CERT shall possess a DOD TOP SECRET Clearance and must possess IT-I Critical Sensitive security clearance or Tier 5 (T5) at time of proposal submission. - Any team member assigned duties as DLA CERT Analyst will maintain CSSP-Analyst certification Contract Start is May 17th. 5 Year POP.