The Premier Security Testing Platform.
Security Analyst, Part-Time
Location
United States
Posted
14 hours ago
Salary
$25 / hour
Seniority
Senior
Job Description
Security Analyst, Part-Time
Synack, Inc.
• Assist the Vulnerability Operations team with the review and acceptance of Missions, Patch Verifications, and vulnerability reports • Bypass customer patch attempts, create suspected vulnerability reports, and exploit real world vulnerabilities • Work remotely with seasoned Computer Security Analysts • Learn what it's like to review complex vulnerability reports
Job Requirements
- Strong written and verbal communication skills
- Basic understanding of various Computer Security topics, particularly offensive cyber subjects
- Coursework in offensive security, hackathons, CTF participation
- Operational, hands-on knowledge of web application vulnerabilities
- A clear understanding of the OSI model, TCP/IP, and CVSS Scoring
- Coursework and/or lab work towards obtaining CEH, GPEN, EJPT, OSCP a plus
- Basic understanding of OWASP top ten
- Creative problem solving acumen
- Enthusiasm to build an offensive cyber career, and a positive can-do attitude!
- Due to Federal Government contract requirements, candidates must be a citizen of the United States
Benefits
- equity
- benefits
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Role Description The Senior Security Analyst (Healthcare) is responsible for protecting the organization’s information systems, data, and technology assets with a primary focus on safeguarding Protected Health Information (PHI) and ensuring compliance with healthcare regulatory requirements. This role plays a critical part in designing, implementing, monitoring, and improving the organization’s cybersecurity posture in alignment with HIPAA, HITECH, and other applicable standards. This position serves as a senior technical and operational resource within the security function, leading security monitoring, incident response, risk assessments, vulnerability management, and compliance initiatives. The Senior Security Analyst works closely with IT, infrastructure, application teams, compliance, and external partners to identify risks, respond to threats, and maintain a strong security posture across a multi-site healthcare environment. Everything we do connects back to real people navigating complex healthcare journeys - and this role helps make that journey brighter. What You’ll Do - Security Operations and Monitoring - Monitor and analyze security events and alerts across networks, endpoints, cloud platforms, and applications. - Investigate suspicious activity and lead incident response efforts, including triage, containment, eradication, and recovery. - Serve as an escalation point for complex security incidents and coordinate cross-functional response efforts. - Maintain and tune SIEM, EDR, and other security tools to improve detection and reduce false positives. - Conduct root cause analysis and document incidents, actions taken, and lessons learned. - Healthcare Security and Compliance - Ensure compliance with HIPAA, HITECH, and other healthcare regulatory and privacy requirements. - Participate in security risk assessments, gap analyses, and audits (internal and external), including support for third-party assessments. - Develop and maintain security policies, standards, and procedures aligned with regulatory expectations. - Monitor controls related to PHI protection, data access, and breach prevention. - Support audit readiness and remediation activities for compliance findings. - Vulnerability and Risk Management - Conduct regular vulnerability scans and coordinate remediation efforts across infrastructure and application teams. - Prioritize risks based on business impact, exploitability, and regulatory exposure. - Track and report on vulnerability remediation status and risk reduction efforts. - Perform risk assessments on new systems, vendors, and technology implementations. - Contribute to third-party risk management and vendor security reviews. - Security Engineering and Architecture Support - Collaborate with infrastructure and application teams to implement secure configurations and controls. - Evaluate and recommend security solutions, tools, and technologies to enhance protection capabilities. - Support secure design reviews for new applications, systems, and integrations. - Validate implementation of security controls across networks, endpoints, and cloud environments. - Identity and Access Management (IAM) - Review and monitor user access to systems containing PHI and sensitive data. - Support access governance processes, including provisioning, deprovisioning, and periodic access reviews. - Investigate access anomalies and enforce least-privilege principles. - Training, Awareness, and Continuous Improvement - Support security awareness and training initiatives with a focus on healthcare threats (e.g., phishing, ransomware). - Provide guidance to IT and business teams on security best practices and risk mitigation. - Identify opportunities to improve security processes, tooling, and response capabilities. - Mentor junior analysts and contribute to the development of the security team. Qualifications - Bachelor’s degree in Cybersecurity, Information Technology, or a related field preferred; equivalent experience considered. - 5+ years of experience in cybersecurity, information security, or related roles. - 2+ years of experience in healthcare IT, security, or regulated environments required. - Demonstrated experience with incident response, threat detection, and vulnerability management. - Experience supporting audits and compliance frameworks in regulated industries. Requirements - Strong understanding of: - Security operations (SIEM, EDR, log analysis) - Network security (firewalls, IDS/IPS, segmentation) - Endpoint security and device hardening - Cloud security principles (Azure, AWS, or similar) - Vulnerability scanning and remediation tools - Familiarity with: - HIPAA Security Rule and Privacy Rule - NIST Cybersecurity Framework (CSF) and/or NIST 800-53 - HITRUST CSF (preferred in healthcare environments) - Knowledge of identity and access management practices. - Understanding of secure system and application design principles. Benefits - Purpose-driven work with real impact - A patient-first, clinician-led culture - Supportive, collaborative teammates - The opportunity to grow with a company building something meaningful Pay Range/Rate $110,000 — $120,000 USD
Cyber Security Analyst, Senior
ICFFounded in 1969, ICF is a global advisory and technology services company headquartered in Reston, Virginia. It delivers data-driven solutions across energy, en
Title: Cyber Security Analyst, Senior (High Level Clearance Required) Location: Pensacola United States Job Description: time type Full time job requisition id R2602422 ICF seeks an experienced Senior Cyber Security Analyst to support the research and development of new cyber analytic capabilities that will help the US protect and defend its networks and critical information systems. The successful cleared candidate will act as a Senior Cyber Security Analyst to support a large federal cyber security analytic program. Your work will contribute to the knowledge of how cyber-attacks work, how vulnerabilities are exploited, and the way hostile cyber actors operate. Utilize your skills to help experiment and prototype future cyber capabilities for implementation at large-scale. As the Senior Cyber Security Analyst, you will work with our customers, developers, and researchers to evolve, automate, and enhance cybersecurity capabilities in defense or federal agencies. This is an opportunity to contribute to an important project from its beginning, work with the latest and emerging technologies, and all while building a great career at ICF! This role has a hybrid work schedule with the expectation of a minimum of two days/week supporting the program based in Pensacola, FL and the remainder of the week teleworking. What You Will Be Doing: - Augment operational cyber analysts and act as a consultant for detection and/or threat hunting - Advise on data preparation, implementation of techniques, visualizations, and employment of analytics developed by ICF and customer partners - Assess current use of cyber tools by analysts and assess whether efficiencies can be made via alternate use of current, or adoption of alternate tools - Problem-solve by identifying potential tools/processes to support needs, capturing areas of improvement that can be translated into functional requirements for future planning - Provide ad-hoc training to cyber analyst teams on tools that support or enhance current processes - Identify areas of technical training gaps and proposed approaches to methods (hands on, online modules, etc.) to improve the use of tools and data in support of the cybersecurity mission. - Participate in post-engagement review - Effectively communicate with leadership to ensure awareness of progress, challenges What You Must Have: - Bachelor’s degree with 12+ or Master’s degree with 10+ years of experience in IT, Cyber, or related field - Position requires a minimum of 5 years of Cyber Security experience (e.g., Threat Hunt, Incident Response, Investigations, Technical Reporting, etc.) - 5 years of experience using network security analysis/IDS tools - 5 or more years of experience analyzing packet capture and NetFlow data with an understanding of current cyber threats and trend derived from multiple sources (e.g., open-source, intelligence products, etc.) - 5 or more years of experience with different types of Malware including detection methods, attack vectors, and vulnerabilities used - Experience with query languages (e.g., SQL, KQL, etc.) - Experience developing advanced dashboards (e.g., Kibana, Splunk, etc.) - Experience with different cybersecurity frameworks and knowledge bases to identify tactics, techniques, and procedures of known actors - 5 or more years of Leadership experience - Active high-level security clearance required as part of client contract requirement - Due to the nature of the work and contract requirements, US citizenship is required Preferred Qualifications: - Interpersonal skills and the ability to communicate effectively with various clients in order to explain and elaborate on technical details - Practical experience with different scripting languages (e.g., Python, JavaScript, etc.) - Practical experience with the Databricks Intelligence Platform - Experience with system vulnerability assessments - Knowledge of Linux/Unix and Windows operating systems security - Knowledge of computer programming and scripting languages - Excellent written and verbal communication skills - Scaled Agile Framework (SAFe) experience - CompTIA Security+ or higher certification level preferred Working at ICF ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy. We will consider for employment qualified applicants with arrest and conviction records. Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act. Candidate AI Usage Policy At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process. However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed. Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position. The pay range for this position based on full-time employment is: $98,145.00 - $166,846.00
• Será responsable de contribuir a la protección de los activos de información. • Garantizar el cumplimiento de estándares de seguridad y apoyar la operación segura de la infraestructura tecnológica de la organización. • Implementar y monitorear políticas, procedimientos y controles de Seguridad de la Información. • Garantizar el cumplimiento de estándares y marcos normativos como ISO 27001, NIST y PCI DSS. • Identificar, evaluar y gestionar riesgos de seguridad de la información. • Administrar y dar soporte a soluciones de seguridad perimetral, incluyendo FortiGate. • Realizar monitoreo y análisis de eventos e incidentes de seguridad. • Ejecutar actividades de fortalecimiento y mejora continua de los controles de ciberseguridad. • Gestionar revisiones de configuraciones de seguridad en infraestructura tecnológica. • Apoyar auditorías internas y externas relacionadas con seguridad de la información. • Generar informes, indicadores y recomendaciones para la mitigación de riesgos. • Brindar acompañamiento técnico a las diferentes áreas en temas de seguridad y cumplimiento.
Lead SOC Analyst
deepwatchdeepwatch is a company that specializes in computer and network security. The business delivers high-quality solutions to identify, protect against, detect, and
Title: Lead SOC Analyst Location: Tampa, FL Hybrid Job Description: Come join Deepwatch’s team of world-class cybersecurity professionals and the brightest minds in the industry. If you're ready to challenge yourself with work that matters, then this is the place for you. We're redefining cybersecurity as one of the fastest growing companies in the U.S. – and we have a blast doing it! Who We Are Deepwatch is the leader in managed security services, protecting organizations from ever-increasing cyber threats 24/7/365. Powered by Deepwatch’s cloud-based security operations platform, Deepwatch provides the industry’s fastest, most comprehensive detection and automated response to cyber threats together with tailored guidance from dedicated experts to mitigate risk and measurably improve security posture. Hundreds of organizations, from Fortune 100 to mid-sized enterprises, trust Deepwatch to protect their business. Our core values drive everything we do at Deepwatch, including our approach to tackling tough cyber challenges. We seek out tenacious individuals who are passionate about solving complex problems and protecting our customers. At Deepwatch, every decision, process, and hire is made with a focus on improving our cybersecurity solutions and delivering an exceptional experience for our customers. By embracing our values, we create a culture of excellence that is dedicated to empowering our team members to explore their potential, expand their skill sets, and achieve their career aspirations, which is supported by our unique annual professional development benefit. Deepwatch recognition includes: - 2025, 2024, 2023, 2022 and 2021 Great Place to Work® Certified - 2024 Military Times Best for Vets Employers - 2024 US Department of Labor Hire Vets Gold Award - 2024 Forbes' America's Best Startup Employers - 2024 Cyber Defense Magazine, Global Infosec Awards - 2023 and 2022 Fortress Cybersecurity Award - 2023 $180M Series C investment from Springcoast Capital Partners, Splunk Ventures, and Vista Credit Partners of Vista Equity Partners - 2022 Cybersecurity Excellence Award for MDR Reports to: SOC Manager Location: Hybrid 3x week, Tampa, FL Shift: 6AM-2PM EST Reporting directly to the SOC Manager, the SOC Team Lead at Deepwatch will make a significant impact on global security. Our mission involves safeguarding organizations against the world’s most advanced threats, and the Deepwatch Security Operations Center is your gateway to a diverse range of experiences. As a SOC Team Lead, you’ll actively detect and respond to incidents in real-time to protect our valued customers. You will also take a proactive role in guiding analysts in cybersecurity related education, helping them achieve their goals. Additionally, you will tackle the hardest investigations a customer will have, ensuring that they get timely and comprehensive reports. Deepwatch has a unique approach to how we support our customers and ultimately provide an experience not found anywhere else. You’ll be an integral part of supporting our customers by understanding their bespoke environment, needs and challenges. You will be playing a key role in supporting some of the top organizations in the world, and have the opportunity to develop your skills by working with the best responders in the industry, your team and your shift! In this role you’ll get to: - Showcase your strong security knowledge by assisting in investigation mentoring, demonstrating efficient ways to pivot within SIEMs, and teaching industry best practices. - Act as the shift triage captain, identifying the appropriate actions to take throughout critical investigations, customer compromises, and network targeting. - Participate in projects aimed at improving SOC operations, enhancing customer retention, refining SOPs and customer service - Collaborate closely with leadership, customer service teams, and product owners to gain insight into new offerings and services. - Disseminate relevant information to your team through training sessions and regular touchpoints. - Leverage our world-class business intelligence team to extract actionable insights from big-data analysis. - Act as an additional resource for the Threat Response team when a compromise is discovered or when a customer declares an Incident. - Engage in peer review sessions to evolve and enhance the analysis quality for ticket escalations. To be successful in this role, you’ll need to: - Demonstrate 5+ years prior SOC experience as a technical escalation point or senior analyst, with the ability to support the team with escalations on an as-needed basis. - Identify opportunities for improvement, continuously measuring accuracy and quality of analysis performed. - Have a track record of working outside your team and across business units solve problems when the situation requires it. - Extensive expertise with SIEMs such as Splunk (required), Google SecOps, and/or Microsoft Sentinel including the ability to navigate the console with ease, perform queries that result in efficient investigations and accurate alert analysis. - Have in-depth understanding of modern EDR, email security, and cloud identity platforms. - A high-level understanding of Adversary Tactics, Techniques, & Procedures (TTP), full packet capture analysis, malware analysis, host forensics (Windows). - Advanced knowledge of Event Logging, Triage, and Analysis. - The ability to autonomously perform a complete and thorough triage and incident investigation with the proficiency to pivot to other log sources, cloud systems, or consoles as necessary and to act as the final point of technical escalation for customers and analysts. - Measure and tell a compelling story with data, not just throughput and performance. - Demonstrate experience working customer SLAs and contract requirements ensuring your team is delivering with quality and efficiency at all times. - Identify problems inside and outside of your team and demonstrate the Deepwatch “One Team” core value by being a strong voice in identifying and ensuring problems are resolved. - Train and mentor other analysts using qualitative measurement tools and techniques as well as act as a coach and support career pathing for your team in partnership with the People Team. - GCIH, GCIA, GDAT, GMON, GREM, OCSP, CISSP certifications preferred, not required. Statutory Pay Disclosure The anticipated salary range for this role is $118,000 - $125,000 + bonus + stock options + benefits. Actual compensation may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level. ITAR Compliance This position will have access to customer data and as such is subject to International Traffic in Arms Regulations (ITAR). Upon application, candidates will be asked to confirm that they are a U.S. Person as defined by the following: - A citizen of the U.S.; - A lawful permanent resident of the United States; - A person admitted to the United States as a refugee; or - A person that has been granted asylum by the United States government. The intent of this requirement is not to verify employment eligibility overall, but to ensure compliance with import/export regulations. If you do not meet these requirements, we encourage you to apply for other open roles at Deepwatch. This information will be verified upon offer of employment. What We Offer: Deepwatch is excited to provide benefits designed to support team members and their families. Including: - Medical, dental, vision, and disability insurance - Flexible Time Off (FTO), 12 company holidays, sick leave and 8-Weeks Paid Parental Leave - Unique professional development benefits with Annual “development dollars” to support our people growth and development - Wellness contests and monthly educational programs - 401(K) retirement program



