Analyst, IT Cyber Security Ops

Virgin Galactic is seeking an Information Security Analyst with experience supporting enterprise security operations, monitoring, and incident response activities. This role will help protect on-prem and cloud environments by identifying threats, analyzing security events, supporting investigations, and assisting with the implementation and improvement of security controls.

This is a hands-on analyst position for someone who enjoys learning new technologies, improving security processes, and collaborating across teams to strengthen the organization's security posture. The ideal candidate is detail-oriented, analytical, and capable of balancing operational security responsibilities with continuous improvement initiatives.

** Responsibilities*
* + Monitor and analyze security events, alerts, and logs across multiple security platforms to identify suspicious or malicious activity

+ Support incident response activities including investigation, containment, remediation, recovery, and documentation of security incidents

+ Assist with the administration, maintenance, and tuning of security tools including SIEM, EDR, email security, vulnerability management, and identity security platforms

+ Perform routine vulnerability assessments and work with internal teams to track and remediate identified risks

+ Investigate phishing emails, endpoint threats, account compromise attempts, and other cybersecurity events

+ Support security awareness and training initiatives by assisting with phishing campaigns and user education activities

+ Collaborate with IT, infrastructure, and business teams to ensure security controls and best practices are implemented effectively

+ Assist in maintaining and improving security documentation, procedures, standards, and operational runbooks

+ Participate in audit preparation, compliance activities, and evidence collection efforts as required

+ Stay current with emerging cybersecurity threats, vulnerabilities, and industry best practices

+ Escalate complex issues and security concerns appropriately to senior team members and leadership

+ Support third-party security providers and vendors as needed

+ Create and maintain high-quality technical documentation, standards, diagrams, and runbooks

+ Perform other duties as assigned

+ Work collaboratively to achieve goals and/or complete assigned tasks

+ Adhere to set directions and guidelines from team leader to support collaboration across teams to complete projects

+ Perform additional responsibilities as assigned by the Team Lead, Manager, or Director

** Required Skills and Experience*
* + Bachelor's degree or higher is preferred (Computer Science, Information Security, Engineering, or related field)

+ Equivalent professional experience may be substituted in place of a degree

+ Minimum of 5 years of experience in cybersecurity, information security, security operations, or related IT roles

+ Foundational understanding of networking, operating systems, and enterprise IT infrastructure

+ Experience working with information security tools such as SIEM, EDR, vulnerability management platforms, email security tools, firewalls, and identity/access management solutions

+ Familiarity with cybersecurity frameworks and best practices such as NIST, CIS Controls, and Zero Trust principles

+ Experience supporting incident response and security investigations

+ Basic understanding of cloud security concepts, particularly within Microsoft 365 and Azure environments

+ Strong analytical and problem-solving skills, including the ability to assess security alerts and determine appropriate actions

+ Excellent communication and collaboration skills, including the ability to communicate technical information to technical and non-technical audiences

+ Strong writing skills for documentation, incident reports, and operational procedures

+ Ability to work effectively in a fast-paced environment while managing multiple priorities

+

Experience with scripting or automation tools (Power Shell, Python, or similar) is a plus

+ Familiarity with vulnerability management and remediation tracking processes

+ Demonstrated organizational and time management skills

+ Ability to communicate in a manner…