Cybersecurity Analyst

We are looking for an IT Security Analyst that will be responsible for executing day to day security operations under the direction of the Network Manager. This role supports the organization's security posture through threat detection and response, identity and endpoint security management, network security oversight, vulnerability management, compliance support, and security awareness activities. A foundational understanding of network infrastructure is required to enable effective collaboration with Network Engineering and other IT teams. This role is expected to be in the Tampa office 4 days a week.

Monitor, triage, and respond to security alerts across Sophos, Microsoft Defender, IDS/IPS, and related security platforms; investigate, contain, and escalate security incidents in accordance with established procedures.
• Develop, maintain, and execute incident response playbooks; participate in tabletop exercises and post incident reviews.
• Administer identity, endpoint, and data protection controls including Entra ID conditional access and MFA, Intune device compliance policies, and Purview DLP policies to protect sensitive and controlled data.
• Review firewall and VPN access changes for security policy compliance; conduct periodic rule audits and enforce network security requirements in coordination with Network Engineering.
• Review vulnerability scan results, coordinate remediation with infrastructure and application owners, and track remediation progress against defined organizational SLAs.
• Support the maintenance of security documentation including security plans, policies, procedures, and remediation evidence.
• Participate in internal control assessments, security gap analyses, and external auditor engagements.
• Execute monthly phishing simulations and deliver quarterly security awareness training.
• Produce quarterly security awareness and operational metrics reports for IT leadership and stakeholders.
• Maintain foundational knowledge of the network environment to support cross-functional collaboration with Network Engineering
• Document security procedures, configurations, and operational runbooks to support continuity and repeatability.

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field preferred.
• 2+ years of experience in IT security operations, security analysis, or a related technical security role required.
• Experience reviewing firewall rules or conducting security policy assessments required.
• Demonstrated hands-on experience administering and maintaining endpoint security solutions (e.g., EDR, MDM, antivirus), including policy configuration, alert monitoring, and response actions required.
• Demonstrated experience managing identity and access controls, including user provisioning, role-based access, MFA, and conditional access within Active Directory, Entra ID, or equivalent systems required.
• Demonstrated experience investigating and responding to security incidents, including alert triage, root cause analysis, containment, and escalation required.
• Experience configuring and supporting Microsoft security technologies (e.g., Defender, Intune, Entra ID, Purview) within an enterprise environment required.
• Working experience with network infrastructure and security, including reviewing and validating firewall rules, supporting segmentation, and exposure to platforms such as Cisco Meraki or Cisco IOS required.
• Experience supporting or executing security awareness initiatives, including phishing simulations, campaign tracking, or end-user training required.
• Experience operating within regulated or compliance-driven environments (e.g., NIST 800-171), including supporting audits, controls validation, or documentation requirements required.
• CCNA, CompTIA CySA+, Microsoft SC200, Microsoft SC300, or equivalent security operations certification preferred.