Cyber Security Analyst

It's fun to work in a company where people truly BELIEVE in what they're doing! We're committed to bringing passion and customer focus to the business. The Cyber Security Analyst is responsible for contributing to, and strengthening, the Information Security function and role throughout the organization. The Analyst will update, document and maintain security standards and policies for the organization. The Analyst will help in the identification, analysis and reporting of cyber threats in addition to ensuring business operations are conducted in accordance with established guidelines and regulatory requirements.

• Monitor, triage, investigate, and resolve security alerts, support tickets, and incidents, including containment, root cause analysis, chain of custody, and preventive actions.
• Identify security risks, recommend remediation or mitigating controls, and support ongoing risk assessments and system testing.
• Apply and enforce information security policies, standards, and procedures, aligning with industry best practices and regulatory requirements (e.g., PCI, GLBA).
• Support integration of regulatory and audit requirements into the security roadmap and ensure the company’s computer systems meet compliance obligations.
• Collaborate with IT Operations to ensure servers, network devices, and security controls meet established security standards and are working as designed.
• Evaluate, implement, and perform compliance assessments on application, system, and security‑related changes and solutions, adhering to established change control processes.
• Perform periodic internal security audit functions on IT operational controls, to include system access, DLP controls, firewall policies, etc.
• Stay current with evolving security technologies and maintain relevant certifications.
• Participate in on‑call rotation.
• Perform other related duties as assigned.

• Familiarity with various cyber threats and mitigating controls.
• Familiarity with various endpoints security solutions, email security solutions, security monitoring tools and appliances.
• Solid understanding of the OSI network model and network protocols such as TCP/IP, firewalls, proxies, IDPS concepts.
• Knowledge of security‑oriented regulatory requirements and compliance a plus.
• Knowledge of the mortgage industry is helpful, but not required.
• Ability to work effectively, independently and with others in a collaborative, deadline‑sensitive environment.
• Able to effectively communicate both verbally and in writing to accurately convey messages with both technical and non‑technical users.
• Commitment and ability to cultivate a diverse and inclusive work environment.

Bachelor’s degree in computer science, engineering or information systems security is preferred.

• Previous experience as an IT security specialist (1‑3 years).
• Experience working in IT (5+ years).
• Experience as a security specialist in a regulated IT environment including some combination of SOX, HIPAA, GLBA, PCI (1+ years).

Covius offers an extensive benefits package for all employees, including medical, dental, vision and 401(k).

Compensation: $70,000 - $87,500 annualized with a 5% AIP opportunity.

This position follows a hybrid work model, combining remote work with in‑office presence. Employees are expected to maintain a professional home office environment and be available to work on‑site as scheduled or as business needs require. Work is performed both remotely and in a standard office setting. Flexible work hours may be available, with expectations to attend meetings and collaborate during core business hours.

Reliable internet access is required for remote work, along with the ability to be on camera to participate in virtual meetings and communications. During in‑office days, work is performed in a climate‑controlled office with standard lighting and noise levels. Employees must comply with company policies regarding data security, time tracking, and collaboration tools across both work environments.

While performing the duties of this job, the employee is…