Job Search Results for cybersecurity analyst

The Cybersecurity Analyst will be responsible for safeguarding the organization?s information systems, infrastructure, and data through proactive monitoring, analysis, and in supporting the... More implementation of advanced security solutions. This position plays a vital role in maintaining a secure technology environment by leveraging tools such as Cisco XDR, Cisco Firepower, Cisco Endpoint, Cisco ASA, Fortinet Gateways, and Duo MFA.The ideal candidate will possess 3?5 years of hands-on experience in network and server hardening, threat detection and response, and disaster recovery planning and execution. Working closely with IT operations, this role ensures that all systems are resilient, compliant, and protected against evolving cyber threats.Key ResponsibilitiesSecurity Operations & Monitoring? Implement, configure, and manage Cisco XDR, Cisco Endpoint Security, and Fortinet Gateways to ensure proactive threat detection and response.? Monitor network and endpoint activities for security incidents using advanced SIEM and XDR tools.? Investigate, analyze, and respond to security breaches, threats, and vulnerabilities.Network & Infrastructure Security? Manage and maintain Cisco Firepower and Cisco ASA firewalls to ensure secure and efficient traffic management.? Administer Duo Multi-Factor Authentication (MFA) for secure user access and identity protection.? Perform network hardening to reduce the attack surface, following best practices and compliance standards.Server & System Hardening? Conduct server hardening across Windows and Linux systems, ensuring compliance with internal and regulatory standards.? Review and implement secure configurations, patch management, and vulnerability remediation.Disaster Recovery & Continuity? Participate in DR drills and testing to validate readiness and response effectiveness.Policy, Documentation & Compliance? Maintain up-to-date documentation of network security configurations, standards, and incident response procedures.? Support compliance initiatives (e.g., NIST, ISO 27001, or CIS Controls) through audits and reporting.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an IS Analyst to join the IT department of an AM 200 law firm. The Information Security Analyst plays a key role in protecting the firm?s digital assets, client data, and... More case-related information by implementing and maintaining security controls in alignment with the ISO 27001 Information Security Management System (ISMS). The analyst will proactively monitor, detect, and respond to security threats; ensure compliance with legal industry data protection standards; and support ongoing risk and compliance initiatives. This role is essential for maintaining client trust, ensuring the confidentiality of privileged information, and meeting both ethical and regulatory obligations in the legal sector.Essential Functions & Responsibilities:-Security Monitoring & Incident ResponseMonitor networks, systems, and endpoints for potential threats using SIEM, EDR, and IDS/IPS tools.-Analyze security alerts, investigate incidents, and coordinate timely response and remediation.Conduct root cause analyses and prepare post-incident reports.-Maintain and test the Incident Response Plan as part of ISO 27001 continuous improvement.Participate in legal hold or eDiscovery-related security reviews when required.-Risk Management & ISO 27001 AlignmentSupport the firm?s Information Security Management System (ISMS) and contribute to maintaining ISO 27001 certification.-Conduct periodic risk assessments, identifying potential threats to confidentiality, integrity, and availability of legal data.-Document and monitor risk treatment plans and corrective actions.-Participate in internal and external ISO audits by providing evidence and maintaining control documentation.-Contribute to the ongoing maintenance of the Firm?s risk register.-Seek out opportunities for continuous improvement in processes and procedures.-Vulnerability Management & Threat Intelligence-Perform regular vulnerability scans and coordinate remediation with IT and service providers.-Monitor industry-standard threat intelligence sources, cybersecurity forums, and dark web feeds for emerging risks, vulnerabilities, and threat actor activities targeting the legal sector.-Track and report vulnerabilities relevant to law firms, third-party vendors, and legal technology platforms (e.g., document management systems, case management tools).-Track and report on patch-management activity to be sure it aligns with required standards.Stay informed on evolving attack vectors such as business email compromise, ransomware, and data exfiltration threats impacting professional services firms.-Governance, Policy, and ComplianceDevelop, maintain, and enforce security policies, procedures, and standards in accordance with ISO 27001 Annex A controls and policy lifecycle.-Ensure adherence to data privacy laws (e.g., GDPR, CCPA) and client contractual obligations.Collaborate with legal teams to align information security practices with attorney?client privilege requirements and ethical obligations.-Support third-party vendor risk assessments and due diligence processes.-Security Awareness & Continuous Improvement-Support the firm?s security awareness training program and conduct periodic phishing simulations.-Educate staff on secure handling of confidential documents and client communications.-Contribute to the continuous improvement cycle of the ISMS by identifying opportunities for control enhancement.-Keep up to date with the latest developments in cybersecurity, privacy law, and ISO frameworks.-Access Control & Data ProtectionManage and review access controls, ensuring least privilege and role-based access models are enforced.-Monitor privileged accounts and perform periodic user access reviews.-Work with IT to secure document repositories, collaboration tools, and cloud-based applications.-Review and act as needed to on data loss prevention alerts from various tools.Technical Skills:Experience with ISO 27001, NIST CSF, or CIS Controls.Proficiency with SIEM platforms (e.g., Splunk, Sentinel, LogRhythm).Strong understanding of network protocols, IDS/IPS, and endpoint security.Familiarity with vulnerability management tools (e.g., Qualys, Nessus) and ticketing workflows.Knowledge of encryption, DLP, and secure file transfer solutions used in legal environments.Understanding of cloud security concepts (Microsoft 365, Azure, or AWS).Familiarity with scripting/automation tools and techniques.Knowledge of EDR/XDR solutions and providers.This is a full-time hybrid role, sitting 2 days in office each week in any of the firm's following offices: Baltimore, Boston, Chicago, Ft. Lauderdale, Harrisburg, Miami, Minneapolis, Newark, New York City, Philadelphia, Princeton, Wayne, PA, West Palm Beach, Wilmington, DE or Washington, D.C.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

A client of Insight Global is looking for a SOC Analyst to weekends FULLY onsite in Austin, TX. In this role, you will actively monitor and analyze security events using one or more SIEM platforms,... More creating custom dashboards and reports as needed. You?ll research events of interest, assess threats, and apply intrusion response techniques through detailed network traffic analysis and impact assessments. Daily tasks include interpreting data from network tools, performing packet-level analysis with tools, and leveraging your knowledge of TCP/IP protocols, DNS, routing, and network architecture. You will apply cybersecurity principles, encryption concepts, and access control mechanisms while following established SOC processes for escalation, incident management, and change control. Familiarity with frameworks such as MITRE ATT&CK, MITRE D3FEND, and the Cyber Kill Chain, as well as compliance standards and defense-in-depth strategies, is essential to ensure robust threat detection and response.Compensation:$30/hr to $35/hr.Exact compensation may vary based on several factors, including skills, experience, and education.Employees in this role will enjoy a comprehensive benefits package starting on day one of employment, including options for medical, dental, and vision insurance. Eligibility to enroll in the 401(k) retirement plan begins after 90 days of employment. Additionally, employees in this role will have access to paid sick leave and other paid time off benefits as required under the applicable law of the worksite location.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an Analyst, Risk and Compliance to support one of our midstream clients on a full-time, permanent basis. This position is based onsite in Houston four days per week, with... More Fridays typically remote. You will play a crucial role in supporting SOX, regulatory audits, risk mitigation, and security controls across IT and OT environments, with direct involvement in audits, reporting, and cyber threat readiness. You will join a team of six and report into the Manager, Risk and Compliance.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an experienced Information Systems Security professional to support a mission-critical government program. This role is responsible for overseeing the development,... More implementation, and evaluation of information system security policies and programs, conducting network and system security analysis in accordance with ICD 503, DCID 6/3, DITSCAP, DIACAP, JSIG, and NISPOM Chapter 8, and advising government program managers on certification, accreditation, and security testing methodologies. The analyst will perform risk assessments, evaluate threats and vulnerabilities, review certification documentation, and provide written accreditation recommendations to the designated approval authority. Responsibilities also include maintaining a formal Information Systems Security Program, coordinating security inspections and audits, managing certification and accreditation documentation, ensuring configuration management and system recovery processes are properly documented, and developing incident response procedures. The role ensures compliance throughout the system life cycle, oversees security training and awareness for AIS personnel, supports secure data handling and file transfers, and provides leadership, mentoring, and quality assurance to team members while coordinating complex technical security issues with the System Security Engineer.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Senior Security Analyst - Detection EngineeringDetection Engineering Experience?8+ years of experience in cybersecurity, with at least 3+ years focused on detection engineering, threat detection, or... More security analytics?Proven experience designing, implementing, and maintaining high fidelity security detections across multiple telemetry sources?Strong understanding of how attacker behaviors manifest in logs, events, and telemetry across enterprise environmentsDetection Design & Framework Alignment?Demonstrated experience building detections aligned to MITRE ATT&CK, focusing on behavior based rather than signature only detection?Ability to perform detection gap analysis and systematically improve coverage, quality, and resilience of detection content?Experience validating detections through testing, simulation, or retrospective analysis [Security O...n Engineer | Word]Security Tooling & Query Languages?Hands on experience with SIEM and EDR platforms, including ingesting and querying large volumes of security telemetry?Strong proficiency writing detection logic using KQL and working with Microsoft Sentinel/Defender?Experience using scripting languages such as Python, PowerShell, Bash, or JavaScript to support detection and automation workflowsAutomation & SOAR?Experience designing and implementing security automation using SOAR platforms to reduce manual effort and improve response consistency?Ability to automate alert enrichment, triage, IOC lookups, and ticketing workflows using Logic Apps?Experience integrating SIEM, EDR, threat intelligence, and case management systems into cohesive workflowsOperational Collaboration?Strong collaboration with SOC analysts, Incident Response, and Threat Intelligence teams to ensure detections are actionable and operationally effective?Ability to support incident response by providing deep technical insight into detections, telemetry, and attacker behaviorsOriginal contract set for 5 months with the opportunity to extendWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

We are seeking an experienced and highly motivated Cyber Incident Response Planner to drive the development and implementation of robust incident response plans and processes. As an integral part of... More the Governance, Risk, and Compliance (GRC) Division within the Information and Cybersecurity Department, you will lead response efforts to mitigate cybersecurity breaches, minimize risk, and safeguard enterprise systems. This role requires a skilled communicator, critical thinker, and experienced responder who thrives in staying ahead of the evolving threat landscape.This is a cross-functional role offering the opportunity to work across teams, contribute to enterprise risk management, and help build a strong incident response culture. The ideal candidate will bring technical expertise, communication acumen, and leadership skills to effectively influence and collaborate across multiple stakeholder groups. This role reports to the GRC Manager and is designated as on-site, with a current expectation of two days in the office due to space considerations. Work will be performed in the Eastern Time Zone (ET) in Atlanta, GA.Key ResponsibilitiesIncident Response Planning & Implementation?Maintain governance over incident response (IR) documentation. Develop, document, and implement comprehensive IR plans, policies, standards and procedures to ensure swift and effective responses to cybersecurity incidents or breaches.?Update and maintain IR documentation, workflows, automation initiatives, and response playbooks and similar, to remain aligned with evolving threats and operational requirements.?Create and maintain secure methods for tracking and reporting IR activities.Incident Handling & Coordination?Assist with handling of security events/incidents, including triage, remediation, documentation of the incident, including Indicators of Compromise (IOCs), and escalation to management.?Coordinate incident investigations, containment, and recovery efforts in collaboration with internal teams and external stakeholders.?Serve as a liaison, ensuring clear and accurate communication of incident details while gathering information for stakeholders across multiple departments and governance bodies. Observe and document events during cybersecurity incidents and exercises to facilitate post-incident response reviews to identify and implement comprehensive improvements based on the lessons learned.?Submit required IR reports to governing bodies to meet legal, regulatory, contractual, and policy obligations (e.g., federal agencies or institutional reporting directives).Threat Awareness & Communication?Maintain a deep and current understanding of the threat landscape, including malware identification, threat actor activity, and emerging attack vectors.?Continuously analyze and consult various publications, websites, news sources, and cyber forums to monitor cyber threats relevant to our environment.?Effectively communicate risks, threats, and potential impacts to stakeholders outside of the cybersecurity domain in a clear and actionable manner.Testing & Validation?Plan and execute incident response exercises, (e.g., tabletop exercises, simulations, and controlled disruptions) to validate and enhance organizational IR capabilities.?Facilitate post-incident response exercise reviews to identify gaps, implement lessons learned, and refine IR processes.Data Analysis & Enterprise Incident Management?Manipulate, analyze, and interpret complex datasets to support cybersecurity investigations and enterprise risk initiatives.?Leverage GRC tools to enhance enterprise cybersecurity risk management processes.?Identify opportunities to automate and innovate IR workflows for improved efficiency.Additional ResponsibilitiesGeneral GRC Support?Resolve service desk incidents and issues assigned by the GRC team.?Review and contribute to cybersecurity documentation for completeness, currency, and accuracy, such as plans for system security, incident response, contingency, disaster recovery, and business/impact analysis. Update as necessary.?Contribute to the preparation of regulatory and compliance reports, collaborate with other organizational units ensuring data accuracy and complianceWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

An employer is seeking a Configuration Data Manager to support a large program for one of our top federal clients. This resource will be responsible for:Analyzing and recommending data requirements... More and specifications.Designing, normalizing, developing, installing, and implementing databases.Maintaining, monitoring, performance tuning, backup, and recovery of databases.Installing, configuring, and maintaining database management systems software.Analyzing and planning for anticipated changes in data capacity requirements.Developing and administering data standards, policies, and procedures.Developing and implementing data mining and data warehousing programs.Evaluating and providing recommendations on new database technologies and architectures.Ensuring the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of data management services.Performing Microsoft SharePoint administration duties. Responsible for providing technical support for the SharePoint environment including assessment and implementation of new capabilities. Duties may include:Configuring SharePoint services and settings.Documenting SharePoint configuration and architecture.Managing content databases and creating new ones as required.Administering and maintaining sites.Managing site layout structure and content.Providing SharePoint support to end users.Other duties as assigned.Ideal hourly range $50-60/hrWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an Incident Response Officer to support Air Force (AF) network security operations by detecting, investigating, and responding to cyber threats. This role is critical to... More protecting mission-essential systems and supporting real-time cyber defense operations across Air Force networks.you will be on the front lines of incident response, working closely with mission leadership, analysts, and law enforcement partners to identify, contain, and remediate cyber threats.Key responsibilities include:Detect and investigate suspicious or malicious activity on Air Force networks to determine the type, scope, and impact of potential intrusionsOpen and manage network intrusion investigations to validate unauthorized activityPerform full incident response actions, including preparation, identification, containment, eradication, recovery, and lessons learnedSupport both planned and rapid-response incident deployments as requiredConduct cyber investigations to identify initial attack vectors, intrusion timelines, threat actors, and affected systemsDevelop containment and remediation recommendations for leadership approvalAuthor, review, and maintain detailed incident reports and mission documentationGenerate end-of-mission reports and provide clear pass-down information to oncoming analyst crews to ensure continuity of operationsProvide technical cyber defense support to Air Force Office of Special Investigations (OSI), law enforcement, and counter-intelligence partners when requiredAssist Air Force field units in reducing vulnerabilities, minimizing risk, and improving overall security postureMonitor host-based and network-based events to determine when deeper analysis or escalation is requiredComply with third-party monitoring, reporting, and information-sharing agreements (MOU/MOA)We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking a Senior Security Integration Engineer (Elastic Stack) to support the Missile Defense Agency (MDA) on the Integrated Research and Development for Enterprise Solutions (IRES)... More contract. The right candidate will possess advanced expertise in logging architecture, SIEM design, data normalization, and systems integration. Job Responsibilities:? Onboarding, integrating, and optimizing security data sources into the Elastic Security Platform. ? Collaborate with customer technical teams to map their environment, plan ingestion strategies, update network and data flow diagrams, validate logging pipelines, and ensure successful end-to-end SIEM integration. ? Conduct assessments of customer environments and identify required logging, telemetry, and network visibility gaps. ? Translate customer operational requirements into ingestion roadmaps and technical implementation plans. ? Develop, maintain, and version-control network diagrams, data flow diagrams, and SIEM onboarding documentation. ? Produce runbooks, integration guides, and operational reference materials. ? Monitor ingestion health and coordinate issue resolution with customers and internal teams. ? Ensure adherence to security policies, logging standards, and architectural governance. ? Provide technical guidance and mentorship to junior engineers working on data ingestion and SIEM onboarding tasks. ? Contribute to onboarding playbooks, best practices, and internal training sessions. ? Serve as a subject-matter expert on Elastic SIEM capabilities and logging integration patterns. This is a contract to hire position, onsite full-time in Colorado Springs, CO or Huntsville, AL the salary range for this role is between $62 - 72/hr depending on years and level of experience, education, and certifications. This role requires an Active Secret Clearance. Typical benefits offered include flexible work schedules, educational reimbursement, retirement benefits (401K match), employee stock purchase plan, health benefits, tax saving options, disability benefits, life and accident insurance, voluntary benefits, paid time off and paid holidays, and parental leave.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less