About this Security Analyst - Contract Position role at Magnetforensics
This is not a traditional entry-level analyst position.
As a Security Analyst, you will support the day-to-day operations of Magnet Forensics' Information Security program while helping strengthen the organization's security posture through security reviews, vulnerability management, investigations, data protection initiatives, and operational security activities.
You will work closely with the Incident Response & Security Operations Engineer, Security Architecture, Security Governance, IT, Engineering, and business stakeholders to help identify risks, perform initial security assessments, and ensure security requirements are considered throughout the organization.
This role serves as the first phase of Information Security review for infrastructure changes, firewall requests, vulnerability remediation, security exceptions, and operational security activities. You will gather information, perform initial assessments, identify potential concerns, and provide recommendations for review by senior Information Security personnel and Security Architecture.
The ideal candidate enjoys technical problem solving, security analysis, and collaborating with others to improve security while balancing business requirements.
This is a 3-4 month contract role.
What You'll Do
Security Operations Support
- Support daily security operations activities across endpoint, identity, network, cloud, email, and SaaS environments
- Assist with security investigations, evidence collection, and incident response activities
- Support triage and analysis of security alerts and suspicious activity
- Participate in incident reviews, tabletop exercises, and operational readiness activities
- Help identify opportunities to improve security monitoring and operational effectiveness
- Perform initial reviews of firewall requests, firewall rule changes, VPN implementations, and network security modifications
- Gather business requirements, technical details, data flow information, and supporting documentation required for security review
- Identify potential concerns, missing requirements, and deviations from established security standards
- Document findings, observations, and recommendations for review by senior Information Security staff and Security Architecture
- Assist with reviews of infrastructure changes, network architecture updates, and security exceptions
- Support implementation of security best practices related to segmentation, least privilege, and access controls
- Track review outcomes and ensure approved actions are documented and completed
- Support vulnerability identification, prioritization, and remediation activities
- Review vulnerability findings and validate affected systems
- Coordinate remediation activities with IT, Engineering, and system owners
- Validate remediation completion and supporting evidence
- Maintain vulnerability dashboards, reporting, and remediation metrics
- Identify recurring issues and opportunities to strengthen security controls
- Escalate high-risk findings and unresolved issues to senior Information Security staff
- Support Data Loss Prevention (DLP) initiatives and operational activities
- Assist with DLP investigations, reporting, and policy validation
- Support data classification and data protection initiatives
- Help maintain DLP procedures, processes, and documentation
- Participate in awareness and readiness activities related to data protection
- Maintain operational security dashboards and reporting
- Support Power BI metrics, KPI development, and executive reporting
- Assist with security program reporting and operational visibility initiatives
- Track trends and identify opportunities for improvement
- Support ongoing security program measurement and reporting activities
- Develop and maintain security documentation, procedures, and runbooks
- Assist with Jira tracking and workflow management
- Document security findings, recommendations, and remediation activities
- Support continuous improvement initiatives across the Information Security program
- Help improve consistency, efficiency, and effectiveness of security processes
- Assist with administration and operational support of security technologies
- Support Microsoft Defender, Sentinel, Entra ID, Purview, Proofpoint, Tenable, and related platforms
- Validate security control effectiveness and identify improvement opportunities
- Support security tool implementation, testing, and operational enhancements
- Assist with automation and operational efficiency initiatives
Infrastructure & Network Security Review Support
Vulnerability & Exposure Management
Data Protection & DLP Support
Security Reporting & Analytics
Documentation & Process Improvement
Security Technology Support
What We're Looking For
Education & Experience
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Networking, Engineering, or equivalent practical experience
- 1–3 years of experience in cybersecurity, IT operations, networking, infrastructure support, or related technical disciplines
- Experience working in enterprise technology environments
- Demonstrated interest in information security and technology risk management
- Strong analytical and problem-solving abilities
- Excellent written and verbal communication skills
- Strong organizational skills and attention to detail
- Ability to gather information and perform structured analysis
- Strong documentation and process discipline
- Ability to balance business requirements and security considerations
- Ability to manage multiple priorities effectively
- Strong desire to learn and develop cybersecurity expertise
- Familiarity with firewall technologies and firewall rule management concepts
- Understanding of TCP/IP, DNS, routing, switching, VPN technologies, and networking fundamentals
- Exposure to network security concepts including segmentation, least privilege, and Zero Trust principles
- Familiarity with Microsoft Defender XDR
- Familiarity with Microsoft Sentinel
- Familiarity with Microsoft Entra ID
- Familiarity with Microsoft Purview
- Knowledge of vulnerability management concepts
- Familiarity with DLP and data protection concepts
- Experience with Power BI
- Experience with Jira
- Familiarity with KQL
- Basic scripting or automation experience using PowerShell, Python, or similar technologies
- Security+
- Network+
- CySA+
- SC-900 Microsoft Security, Compliance, and Identity Fundamentals
- SC-200 Microsoft Security Operations Analyst
- SC-300 Microsoft Identity and Access Administrator
- SC-400 Microsoft Information Protection Administrator
- Other relevant Microsoft Security certifications
Core Skills
What We Want (Preferred)
Certifications (Preferred, Not Required)