Cybersecurity Analyst (Onsite)

About the Role

We’re looking for a Cybersecurity Analyst to help protect the organization’s digital assets and ensure the security of critical systems and data. This role focuses on identifying vulnerabilities, monitoring threats, and responding to security incidents.

You’ll work closely with IT and business leaders to strengthen defenses, maintain compliance with security standards, and promote cybersecurity awareness across the company.

Key Responsibilities

Monitor networks and systems for suspicious or abnormal activity.

Respond to cybersecurity incidents, including containment, investigation, remediation, and recovery.

Conduct regular vulnerability assessments and penetration testing.

Identify, assess, and mitigate risks related to system configurations, network architecture, and software deployments.

Manage and optimize security tools such as antivirus, endpoint detection and response (EDR), and SIEM solutions.

Support compliance audits (e.g., NIST, ISO 27001) and maintain accurate documentation.

Develop, implement, and update security policies, standards, and best practices.

Provide cybersecurity awareness training to employees.

Stay updated on emerging cyber threats, vulnerabilities, and tools.

Analyze threat intelligence and apply insights to improve defenses.

Prepare reports on security incidents, vulnerabilities, compliance status, and mitigation progress.

Collaborate with IT, business units, and compliance teams to ensure security integration across operations.

Communicate technical risks and threats clearly to non-technical stakeholders.

Performance Indicators

Incident detection and response time (MTTD, MTTR).

Number of prevented or remediated attacks.

Vulnerability remediation rate.

Quality and timeliness of incident reports.

Adherence to cybersecurity policies and risk management procedures.

Employee training and phishing simulation success rates.

Qualifications

Bachelor’s degree in Computer Engineering, Information Technology, Data Science, or related field.

At least 3 years of experience in network administration or cybersecurity.

Strong understanding of subnetting, firewalls, VPNs, operating systems, and network devices (switches, access points).

Hands-on experience with security tools such as SIEM, antivirus, and EDR solutions.

Experience in vulnerability assessment and penetration testing.

Ability to conduct or support cybersecurity training.

Preferred certifications : NSE 1-4, CCNA, CompTIA Security+, CompTIA CySA+.

Advantage but not required : CISSP certification.

Strong analytical, communication, and problem-solving skills.