Cyber Security Analyst

Cyber Security Analyst (Hands‑On Technical – Data Protection & Threat Monitoring)

Summary

This is a great opportunity to work a 5 day a week on‑site work schedule located around the I‑45/Beltway/IAH area of Houston. It is a 6–12‑month contract to start and an immediate need. If you are a qualified, dedicated, and dependable Cyber Security Analyst with experience in a hands‑on role, please consider applying.

• Actively monitor and analyze security alerts across endpoint, network, cloud, and identity platforms.
• Investigate suspicious activity, potential data exfiltration, and unauthorized access events.
• Perform hands‑on incident response, including triage, containment, and remediation.
• Develop, tune, and maintain detection logic, correlation rules, and alert thresholds in SIEM platforms.
• Work directly within security tools to configure, optimize, and enhance detection and prevention capabilities.
• Analyze logs and telemetry to identify patterns, threats, and anomalies across systems.
• Support and improve controls for protecting sensitive data across email, cloud, endpoints, and network layers.
• Conduct threat hunting and proactive analysis to identify hidden or emerging risks.
• Integrate security tools and automate workflows using scripting to improve efficiency and response times.
• Participate in forensic analysis and investigations related to security incidents.

• Partner with IT, engineering, and business teams to strengthen security controls and reduce risk exposure.
• Provide guidance on secure system usage and data handling best practices.
• Support compliance and audit activities by validating control implementation.
• Document incident response procedures, playbooks, and technical configurations.
• Communicate findings and risks to both technical and non‑technical stakeholders.
• Contribute to security awareness initiatives and organizational training efforts.
• Must have excellent communication skills and professional demeanor.

• 3–6 years of experience in a hands‑on cybersecurity or security operations role.
• Proven experience working directly with security tools for monitoring, detection, and response.
• Strong background in incident response, threat analysis, and alert triage.
• Experience with SIEM platforms and developing detection use cases.
• Ability to analyze logs, correlate events, and identify indicators of compromise.
• Familiarity with common attack vectors including phishing, malware, lateral movement, and data exfiltration.
• Working knowledge of scripting (Python, Power Shell, or similar) for automation and analysis.
• Strong analytical mindset with a focus on problem‑solving and technical execution.

• Experience in cloud security monitoring and securing modern enterprise environments.
• Familiarity with zero‑trust concepts, identity security, or access control models.
• Exposure to data protection technologies such as classification, encryption, or loss prevention.
• Experience conducting threat hunting or proactive security analysis.
• Background in supporting digital forensics or breach investigations.
• Strong communication skills with the ability to clearly explain technical findings.
• Self‑driven, detail‑oriented, and comfortable working in a highly technical, hands‑on capacity.
• Hands‑on technical execution is the core of this role (approximately 80% focus on active security operations, not policy‑only or governance).