Find The RightJob.

Cyber Security Analyst

Summary of Position:

Digital Check Corp. is the world's leading manufacturer of check scanners and a technology company that provides world-class solutions in check processing, microfilm reading/conversion, and cash handling automation software. As the Cyber Security Analyst, you will be a critical part of our IT team, responsible for monitoring, maintaining, and continually advancing the security posture of our enterprise systems and data. This is a hands-on role focusing on both daily operations and strategic security policy advancement, with a strong emphasis on the Microsoft security stack and compliance, including our SOC 2 Type 2 certification efforts.

Principal Duties and Responsibilities:

Security Operations and Monitoring

Review Windows Defender and Suricata Logs Daily to proactively identify, investigate, and triage potential security incidents and anomalies.
Manage Security Related tickets and maintain diligence to stay on top of updating, escalating, and closing them in a timely manner.
Conduct daily reviews of AI usage logs across the enterprise in Microsoft to ensure compliance with acceptable use policies and identify potential data risks.
Assist in incident response activities, providing detailed analysis and documentation.

Perform in-depth investigations into insider threat incidents, working closely with business leaders.

Conduct Red Team Assessments and Penetration Tests. Ensure vulnerabilities are remediated in a timely manner.
Create PowerShell and KQL scripts within Azure Sentinel and Office 365.

Security Policy and Administration

Maintain and update Windows Defender Policies across the organization's endpoints to ensure robust protection.
Review and maintain Conditional Access Policies within Microsoft to enforce Zero Trust principles and secure access to resources.
Establish Identity & Access Management controls to govern, monitor, and audit privileged access.
Update AI related safeguards

Refine detection capabilities by creating and optimizing rules, alerts, and risk scoring models.

Governance, Risk, and Compliance (GRC)

Manage Vendor Security by performing due diligence, assessing third-party risks, and tracking vendor compliance.
Play a key role in conducting SOC 2 Type 2 audits and other regulatory compliance efforts by gathering evidence, documenting controls, and coordinating with auditors.
Establish security best practices and create formal documentation, policies, and procedural guides.
Provide training through Knowbe4 to educate employees and users on cybersecurity best practices.

Security Architecture and Improvement

Implement Security Changes in infrastructure, applications, and processes, ensuring security is integrated early in the design lifecycle.
Advance our usage of Microsoft DLP (Data Loss Prevention) capabilities to protect sensitive and confidential data across the enterprise.
Demonstrate a strong understanding of Network Segmentation, firewall rules, SSO (Single Sign-On), and MFA (Multi-Factor Authentication) to implement and maintain a secure network architecture.
Define metrics and reporting frameworks to measure the effectiveness of the security program.

Knowledge, Skills and Abilities Required:

Required Skills & Experience

2+ years of experience as a Security Analyst or in a similar security-focused role.
Hands-on experience with Microsoft 365 security tools, including Microsoft Defender, Conditional Access, Sentinel, and Data Loss Prevention (DLP).
Proficiency with PowerShell and KQL scripting.
Direct experience with log analysis from security tools such as Suricata, Defender, and SIEM/SOAR platforms.
Familiarity with compliance frameworks, particularly those relevant to financial services technology or manufacturing (e.g., SOC 2, ISO 27001).
Solid foundational knowledge of networking protocols, firewalls, and network segmentation concepts.
Experience in vendor security management and risk assessment.

Preferred Qualifications:

Relevant security certifications (e.g., CompTIA Security+, Microsoft Certified: Security, Compliance, and Identity Fundamentals, or similar).
Experience with Privileged Access Management (PIM) solutions.
Experience working in an environment that requires a high degree of physical and digital security due to handling financial or proprietary data.

Personal Skills and Competencies:

Excellent written and verbal communication skills to articulate complex security concepts to technical and non-technical stakeholders.

Customer Base:

Financial organizations and retailers

The above is not intended to be an all-inclusive list of the duties and responsibilities of the job described, nor is it intended to be an exhaustive list of the skills and abilities required to do the job. Rather, it is intended only to describe the general nature of the job. Employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.

Similar jobs