Security Analyst

Position Summary

The Security Analyst is responsible for monitoring, detecting, and investigating cybersecurity threats across the enterprise environment. This role supports security operations by analyzing alerts, responding to incidents, and helping protect organizational systems and data using tools including CrowdStrike Falcon, Cyberhaven, and the Microsoft security ecosystem.

Key Responsibilities

• Monitor and investigate security alerts from CrowdStrike Falcon, Cyberhaven, and Microsoft security tools.
• Analyze suspicious activity and assist with incident response and containment.
• Investigate endpoint activity and potential threats using CrowdStrike Falcon EDR/XDR.
• Monitor sensitive data movement and potential exfiltration using Cyberhaven DDR.
• Review alerts and telemetry from Microsoft Defender for Endpoint, Defender for Identity, Microsoft 365 Defender, Azure AD / Entra ID, and Microsoft Sentinel.
• Document incidents, findings, and response actions.
• Support threat detection, alert tuning, and SOC operational improvements.

Required Qualifications

• 2 4 years of experience in cybersecurity operations or security monitoring.
• Hands-on experience with CrowdStrike Falcon.
• Experience with Cyberhaven DDR or similar data security technologies.
• Experience with Microsoft security platforms, including Defender and Sentinel.
• Understanding of endpoint detection and response, incident investigation, and threat monitoring.

Preferred Qualifications

• Experience with PowerShell or KQL.
• Familiarity with MITRE ATT&CK framework.
• Security certifications such as Security+, CySA+, or CrowdStrike Falcon certification.