Description:
The Cyber Security Analyst will be responsible for to provide temporary technical information security support to the Information Security team. This is a hands-on, operational role working directly under the direction of the Chief Information Security Officer (CISO). The primary focus of this engagement is administration and optimization of Microsoft Defender (Endpoint, Cloud, and Office 365) and the KnowBe4 security awareness and training platform, alongside broader Azure security operations and compliance support.
This is a 6-month engagement with the possibility of extension depending on team staffing needs. The ideal candidate is a self-directed security professional who can contribute immediately with minimal ramp-up time.
Responsibilities
Microsoft Defender Suite Administration
- Configure and optimize Microsoft Defender for Endpoint across managed devices
- Manage Microsoft Defender for Cloud policies, alerting, and cloud posture recommendations
- Configure and tune Microsoft Defender for Office 365 to strengthen email threat protection
- Respond to Defender alerts; perform triage, investigation, and escalation as appropriate
- Document configuration baselines and policy decisions for operational continuity
KnowBe4 LMS Administration
- Configure, launch, and administer all nine CY2026 mandatory training campaigns in the KnowBe4 platform, including:
Security Awareness (phishing simulation + training modules)
Hostile Work Environment, Sexual Harassment Prevention, and DEI
0 Data Privacy, HIPAA Compliance, and PCI DSS Awareness
0 Secure Coding Practices and Know Your Customer (KYC)
- Manage enrollment, completion tracking, and reporting for all campaigns
- Configure and execute phishing simulation campaigns; analyze results and report trends to the CISO
- Serve as primary KnowBe4 platform administrator for the duration of the engagement
Azure Security Operations
- Assess the current Azure security posture and document gaps against best practices
- Remediate misconfigured resources, excessive permissions, and outstanding policy exceptions
- Configure and optimize Microsoft Sentinel (SIEM) and Microsoft Purview
- Maintain Azure security hygiene and contribute to environment hardening initiatives
Security Operations & Compliance Support
- Assist with security incident detection, triage, and response activities under CISO direction
- Support evidence gathering and preparation for scheduled compliance audits (ISO 27001, ISO 42001, HITRUST r2, SOC 2 Type II, HIPAA/HITECH, PCI DSS, TX-RAMP)
- Conduct user entitlement reviews and access certification workflows within Vanta GRC; document and remediate identified over-provisioning or access exceptions
- Assist with audit evidence collection, control testing, and remediation task tracking in Vanta GRC
- Assist with periodic vulnerability scanning
- Document security procedures, runbooks, and configuration standards to reduce technical debt
- Support security review of new technology deployments and integrations as required