Role Description This is an entry-level position expected to begin Summer 2026, and is fully-remote from any U.S. location. Travel 1-2 times per year may be required. This is a non-exempt position. The Associate Cyber Security Analyst supports the day‑to‑day operation of ICF’s information security program under the guidance of senior security staff and the Cyber Security Manager. This role assists with monitoring, maintaining, and documenting security controls and technologies, including: - Endpoint protection - Access controls - Vulnerability management - Security event monitoring Working closely with experienced analysts and internal stakeholders, the Associate Cyber Security Analyst helps: - Identify, document, and escalate security issues - Support routine security operations - Contribute to security assessments and reporting The role provides hands‑on exposure to and guidance with: - Incident response - Compliance activities - Security tooling Performance Objectives: - Detail‑oriented with a strong analytical mindset and a willingness to learn - Ability to clearly document work and communicate effectively in writing and verbally - Collaborate with technical and business stakeholders to support vulnerability remediation and security event response - Learn, follow, and document common security processes under guidance from senior team members - Assist with security request and incident ticket intake, triage, and escalation - Support the collection and creation of artifacts for audit and compliance activities - Analyze security log data to identify emerging or unusual patterns - Review and help validate vulnerability findings using established processes - Assist with the operation of infrastructure and application vulnerability scanning tools - Research and test emerging threats, vulnerabilities, and security techniques - Working knowledge of Windows, macOS, and/or Linux operating systems - Foundational understanding of networking concepts, including the OSI model, TCP/IP, routing, and switching - Familiarity with scripting or query languages such as PowerShell, Python, Java, or SQL - Assist in modifying or proposing security alerts for events of interest - Participate in on‑call rotations as part of a team, with guidance and escalation support - Assist with disaster recovery and incident response testing and exercises Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field or equivalent practical experience Requirements - 1–2 years of general technology experience (including internships, academic projects, or relevant hands‑on work) - Foundational knowledge of information security principles, common security practices, and log monitoring/analysis concepts - Familiarity with cloud platforms (Azure and/or AWS) and common security tools through coursework, labs, or hands‑on experience (e.g., vulnerability scanners, network analysis tools, penetration testing frameworks) - Exposure to security monitoring and incident response fundamentals, including network traffic analysis - Basic scripting or automation experience (e.g., simple scripts or academic projects) - Awareness of emerging technologies, including the use of generative or agentic AI in security contexts - Strong interest in learning and developing cybersecurity skills - Ability to manage multiple tasks, adapt to changing priorities, and operate effectively in time‑sensitive situations - Demonstrated professionalism and discretion in handling sensitive information - Flexibility to support extended hours or incident response activities, as needed - Entry‑level cybersecurity certifications (e.g., CompTIA Security+ or equivalent) a plus Benefits - Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. - Pay Range: $61,232.00 - $104,094.00 based on full-time employment.

Role Description Estamos buscando un nuevo talento para unirse al equipo de Operaciones de Tecnología de la Información. Responsable de diseñar, mantener, ejecutar y mejorar los planes de recuperación ante desastres (DRP) para entornos cloud y data center, asegurando la continuidad operativa de los servicios críticos. Trabaja en conjunto con equipos de infraestructura, cloud, seguridad y aplicaciones para garantizar que los sistemas puedan ser recuperados dentro de los objetivos definidos de RTO y RPO, cumpliendo con estándares de resiliencia y continuidad del negocio. Activities: - Definir, documentar y mantener planes de Disaster Recovery (DRP) para servicios críticos - Levantar y actualizar inventario de aplicaciones, dependencias y criticidad de servicios - Definir RTO (Recovery Time Objective) y RPO (Recovery Point Objective) junto a negocio y TI - Diseñar estrategias de recuperación (backup/restore, pilot light, warm standby, active-active) - Coordinar y ejecutar pruebas de DRP (simulacros, failover, failback) - Validar resultados de pruebas y proponer mejoras continuas - Monitorear cumplimiento de políticas de backup y replicación - Coordinar con equipos de infraestructura, cloud y bases de datos para implementación de DR - Gestionar y validar mecanismos de replicación de datos entre sitios o regiones - Asegurar disponibilidad de runbooks y procedimientos de recuperación actualizados - Participar en la gestión de incidentes mayores relacionados a caídas o desastres - Liderar procesos de activación de DRP en situaciones reales - Asegurar cumplimiento de estándares (ISO 22301, buenas prácticas de continuidad) - Identificar riesgos y puntos únicos de falla (SPOF) en la arquitectura - Generar reportes de estado, cumplimiento y madurez de DRP - Colaborar con áreas de seguridad para alineación con planes de continuidad (BCP) Qualifications - Cloud (AWS / Azure): - AWS Backup - Amazon S3 (versioning, lifecycle) - Amazon RDS (snapshots, multi-AZ, read replicas) - AWS Elastic Disaster Recovery (DRS) - CloudWatch (monitoreo y alertas) - Regiones y disponibilidad (multi-AZ) - Azure Backup - Azure Site Recovery (ASR) - Azure Storage (redundancia: LRS, GRS) - Azure SQL (geo-replicación) - Azure Monitor - Arquitectura regional y zonas de disponibilidad - DR / Continuidad: - Diseño de DRP - Definición de RTO / RPO - Estrategias de recuperación (pilot light, warm standby, active-active) - Planes de continuidad del negocio (BCP) - Ejecución de pruebas de DR - Análisis de impacto al negocio (BIA) - Gestión de crisis e incidentes - Infraestructura / Data Center: - Replicación de datos (sincrónica / asincrónica) - Storage (SAN / NAS básico) - Virtualización (VMware, Hyper-V) - Alta disponibilidad (HA) - Failover / failback - Gestión de backups - Sistemas Operativos: - Linux (básico/intermedio) - Windows Server - Administración básica de servicios - Troubleshooting en recuperación de sistemas - Networking: - Conceptos de conectividad entre sitios (VPN, ExpressRoute, Direct Connect) - DNS y failover - Balanceo de carga - Validación de accesos en escenarios DR - Herramientas: - Herramientas de backup enterprise (Veeam, Commvault, similares) - Azure DevOps / JIRA - Herramientas de monitoreo - Documentación técnica y runbooks - Plus (opcional): - Automatización (Bash / PowerShell) - Terraform / IaC (nociones) - Conocimiento en ciberresiliencia - Experiencia en auditorías o compliance - Certificaciones cloud (AWS / Azure) - Certificaciones en continuidad (ISO 22301, DRII, etc.) Company Description Accenture es una compañía global líder en servicios profesionales con una amplia gama de soluciones en estrategia y consultoría, tecnología, operaciones y capacidades digitales, brindando un servicio integral a nuestros clientes para que alcancen su máximo rendimiento. Visítanos en www.accenture.com Declaración de igualdad de oportunidades en el empleo: Creemos que nadie debe ser discriminado por sus diferencias. Todas las decisiones de empleo se tomarán sin importar la edad, raza, credo, color, religión, sexo, origen nacional, ascendencia, discapacidad, condición de veterano militar, orientación sexual, identidad o expresión de género, información genética, estado civil, ciudadanía ni ningún otro criterio protegido por la legislación aplicable.

• Support the day‑to‑day operation of ICF’s information security program under the guidance of senior security staff and the Cyber Security Manager • Assist with monitoring, maintaining, and documenting security controls and technologies, including endpoint protection, access controls, vulnerability management, and security event monitoring • Work closely with experienced analysts and internal stakeholders to identify, document, and escalate security issues • Support routine security operations including security monitoring, service requests, evidence gathering, and incident response support • Contribute to security assessments and reporting

Role Description We're looking for a SOC Lead who will own Atlan's security operations end-to-end. You lead the function, not a team. You own detection and response outcomes, manage our external SOC vendor, and build the AI-native operations layer that defines what security ops looks like at Atlan. You'll report to the Senior Security Manager and work across Application Security, Platform Security, GRC, and Corporate Security. We expect this person to contribute beyond SOC — whether that's supporting compliance audits, or security automation. What You'll Do - Own SOC operations - Manage the managed SOC vendor - Build detection and response capability - Build and operate AI agents for SOC - Lead incident response - Drive automation - Build toward in-house SOC - Contribute across security domains - Report to leadership Qualifications - 6+ years in security operations, with demonstrated experience building or leading core SOC functions, particularly across detection engineering and incident response. - Hands-on experience with SIEM platforms — alert triage, detection rule development, correlation logic (Splunk preferred) - Experience managing or working closely with a managed SOC or MDR vendor - Strong incident response fundamentals — you've run incidents, written post-mortems, and improved controls as a result - Comfortable with cloud-native environments (AWS/GCP/Azure) and the threat landscape specific to SaaS B2B companies - Experience with EDR platforms (SentinelOne, CrowdStrike, or similar) - Ability to write clearly — incident reports, runbooks, leadership briefings - Hands-on experience building automation — scripts, workflows, or integrations that reduced manual analyst work Requirements - Working knowledge of LLMs and how they can be applied to security operations — triage, summarization, investigation assistance - Experience building or using AI-assisted security workflows (prompt engineering, agent frameworks, or SOAR + AI integrations) - Ability to evaluate and deploy AI SOC agent tooling — you can tell the difference between a demo and something production-ready Nice to Have - Experience building or scaling an in-house SOC from scratch - Familiarity with automation tooling (n8n, Tines, Palo Alto XSOAR, or similar) - Prior work building agentic security workflows — multi-step AI pipelines that take actions, not just generate text - Working knowledge of compliance frameworks (SOC 2, ISO 27001, HIPAA) and how SOC feeds compliance evidence - Threat hunting experience - Relevant certifications: GCIA, GCIH, GCFA, or equivalent Benefits - Competitive Compensation: Strong base salary, performance-based variable pay, and impact-driven equity. - AI Native Culture: AI is woven into how we build, think, and work every day. - Health & Wellness: Comprehensive health, dental, vision, and mental health benefits. - Flexible Time Off & Leave Policies: Trust to own your energy with flexible time off and modern leave. - Accelerated Growth & Learning: Develop at an uncommon velocity through cutting-edge tech. - Global, Remote-First, High-Trust: Work from anywhere with a diverse team across 15+ countries.