As a Cybersecurity Analyst, you will play a key role in protecting a global SaaS platform by actively monitoring for threats, identifying vulnerabilities, and supporting timely incident response. You'll work across security systems to ensure the integrity and resilience of cloud environments, collaborating with technical teams to enforce secure practices and improve detection capabilities.
Key Responsibilities
- Monitor and evaluate security alerts, logs, and system behavior to detect potential threats or anomalies.
- Support incident investigation and response, including triage, initial containment, and escalation of high-risk events.
- Operate and maintain security tools such as endpoint protection, identity controls, and monitoring platforms.
- Track and prioritize identified vulnerabilities across infrastructure, applications, and third-party systems, coordinating fixes with engineering teams.
- Assist in enforcing access and authentication policies across cloud services and internal platforms.
- Support secure user lifecycle processes, including onboarding and offboarding of personnel and systems.
- Improve logging coverage, alerting accuracy, and detection rules to strengthen proactive monitoring.
- Document security incidents, investigations, and remediation steps to ensure traceability and compliance.
- Collaborate with infrastructure, engineering, and operations teams to integrate security into daily workflows.
- Contribute to the ongoing improvement of security processes, tooling, and operational readiness.
Qualifications
Candidates should have 3–5 years of experience in cybersecurity or technical IT roles, with demonstrated knowledge in areas such as endpoint protection, identity security, or threat monitoring. Experience in cloud or SaaS environments is essential. You must be comfortable troubleshooting technical issues, analyzing system data, and working independently in a remote, asynchronous setting.
Preferred qualifications include involvement in incident response or vulnerability management programs, familiarity with scripting (Python, Bash, PowerShell), and awareness of cybersecurity frameworks. Certifications such as Security+ or SSCP are considered advantageous.
Work Environment
This is a remote-first position with team members distributed globally. The organization has operated remotely since 2013, emphasizing flexibility, inclusivity, and work-life balance. Occasional in-person meetings may be scheduled for critical initiatives. The culture values collaboration, open communication, and long-term growth, with regular team events to strengthen connections across the organization.
