• Perform penetration testing of company owned application, networks, and systems • Perform web application and cloud discovery, enumeration, and exploitation • Assist in red team operations and adversary emulation exercises • Assess and communicate the operational risks of exploitation • Create testing plans and methods to find and confirm vulnerabilities • Scope and assess the time needed to complete operational testing tasks • Modify and adapt public exploit code and tools to meet operational requirements • Utilize and develop automation where possible to save time and gain efficiency • Serve as a subject matter expert to the organization for offensive security topics • Provide expertise to security operations, threat intelligence, and forensics, as needed • Work independently and troubleshoot technical and business process-related issues • Experience supporting a variety of different offensive engagements for a large enterprise • Ability to present complex topics, simply, to varying levels of the organization.

• Monitor security events, alerts, dashboards, and operational queues within SIEM, IDS/IPS, and cloud security platforms • Respond to operational tickets, incidents, and service requests within established SLA response timelines • Ensure ticket updates, escalations, documentation, and resolution activities comply with contractual SLA requirements • Perform initial triage and classification of cybersecurity and operational alerts • Escalate incidents in accordance with operational severity classifications and response procedures • Assist with incident investigation, event enrichment, and evidence collection activities • Support ticket management, workflow tracking, and operational documentation within JIRA or equivalent ITSM platforms • Monitor endpoint, network, cloud, and infrastructure telemetry for indicators of compromise or operational degradation • Support vulnerability management activities, including Nessus scan review and remediation tracking • Monitor and support security operations within AWS and Microsoft Azure cloud environments • Support Appgate Secure Access and Zero Trust access monitoring activities • Assist with Splunk dashboard monitoring, search analysis, correlation review, and alert validation • Support operational reporting, metrics collection, SLA tracking, and audit readiness activities • Maintain situational awareness across connected, degraded, and disconnected operational environments • Follow established cybersecurity procedures, change control processes, escalation paths, and operational playbooks • Participate in shift turnover briefings and operational status reporting • Support coordination activities between NOC, CSOC, engineering, cloud operations, and field support personnel • Maintain operational logs, incident records, and audit documentation

Role Description Milestone Technologies is hiring for a Security Analyst to serve our growing business at a Fortune 500 enterprise client. This role is responsible for ensuring continuous infrastructure reliability for multiple revenue-generating services. - Provide support through security operations incident management processes to protect and/or restore service operations as quickly as possible and minimize impact on customers. Qualifications - Minimum 3+ years of experience working in 24x7 enterprise operations, preferably security operations. - Minimum 1+ years of experience working with SIEM, including running investigations (correlating events on different aspects such as source/destination addresses, usernames, and process names). - Demonstrable comprehension of Information Security including malware, emerging threats, attacks, and vulnerability management. - A sound understanding of TCP/IP and networking concepts. - Understanding of network design principles with knowledge of the OSI model. - Flexibility around being on-call or a scheduled rotation. - Service-oriented approach to resolving customer escalations, incident handling, and response. - Superior written communication skills. - Strong deductive reasoning, critical thinking, problem-solving, and prioritization skills. - Ability to rapidly find, assimilate and synthesize information correctly while under pressure. Requirements - IT-related degree or certification. - Prior experience analyzing data and pulling service logs to investigate trends and identify errors. - Network, Security, or Platform certification(s) (S+, N+, MCSP, CNA) is a plus. - Strong experience with SIEM tools and security event processes.

Role Description The Security Analyst on the Governance, Risk, and Compliance (GRC) team plays a critical role in safeguarding sensitive information resources and data, ensuring organizational compliance with industry regulations. This position supports the development, implementation, and monitoring of security policies, risk management processes, and compliance frameworks such as HIPAA, TAC 202, UTS 165, and NIST cybersecurity standards. - Under direct supervision, supports the organization’s information resources, security environments, and applications to ensure they remain adequately protected and aligned with the NIST Cybersecurity Framework (CSF). - Assists in activities across the CSF functions: Identify, Protect, Detect, Respond, and Recover. - Supports asset classification, implements security controls, monitors for anomalous activity, and participates in 24/7 incident response processes. - Completes CompTIA CySA+ certification training and successfully passes the exam within 90 days of hire. - Works assigned shifts supporting 24x7x365 Tier 1 SOC operations. - Performs alert triage across on-premises and cloud security technologies, including SIEM, IDS, antivirus, cloud services, Windows servers, network infrastructure, DLP, UBA, and user-submitted security reports. - Applies basic security controls to contain malicious activity and prevent unauthorized disclosure of sensitive information. - Escalates alerts to Tier 2 based on severity and priority, supporting follow-on incident response activities. - Contributes to SOC workflow improvements by identifying false positives and recommending process enhancements. - Assists with incident response through resolution and helps develop after-action reports. - Participates in ongoing skill development to strengthen investigation and response capabilities. - Adheres to internal controls, reporting structures, and all applicable standards, processes, and procedures. - Performs other related duties as assigned by management. Qualifications - Bachelor's degree and one (1) year of IT or security experience. An equivalent combination of education and experience relevant to the role may be considered. - 3 years of cybersecurity experience (preferred). - Proficiency in Python, Rust, C, C+, Java, and/or PowerShell (preferred). - Academic and/or working experience with TCP/IP networking, and networking services such as DNS, SMTP, DHCP, etc. (preferred). - Familiarity with Windows, MacOS, Linux-variant operating systems, such as the file system structure, system services, and typical behavior of endpoints and servers (preferred). - Experience with cloud-based services such as Microsoft Office 365 and Azure productivity tools (preferred). Requirements - Any qualifications to be considered as equivalents in lieu of stated minimums require the prior approval of the Chief Human Resources Officer or designee. - Must be routinely reviewed to determine whether they are able to maintain the security or integrity of critical infrastructure. Benefits - Actual salary commensurate with experience. - Remote Local position, Rotating Shifts, Including Nights and Weekends. Equal Employment Opportunity UTMB Health strives to provide equal opportunity employment without regard to race, color, religion, age, national origin, sex, gender, sexual orientation, gender identity/expression, genetic information, disability, veteran status, or any other basis protected by institutional policy or by federal, state or local laws unless such distinction is required by law. As a Federal Contractor, UTMB Health takes affirmative action to hire and advance protected veterans and individuals with disabilities.