Note: The job is a remote job and is open to candidates in USA. Re:Build Manufacturing is a growing family of industrial and engineering businesses focused on revitalizing US manufacturing. The IT Security Analyst role is essential in defending the company against cyber threats, managing security incidents, and improving the overall security posture using Microsoft security tools.
Responsibilities
- Monitor security alerts, dashboards, and logs across the Microsoft Defender suite (Endpoint, Identity, Cloud Apps, Vulnerability Management, etc.), Microsoft Purview, and Microsoft Sentinel to detect and respond to potential security incidents and track and prioritize vulnerability remediation
- Manage and optimize Microsoft Defender security policies, configurations, and deployment across the enterprise environment
- Utilize Microsoft Purview capabilities (e.g., Data Loss Prevention, eDiscovery) to enforce compliance policies and protect sensitive data
- Develop and maintain custom detection rules and alerts within the security platforms to address emerging threats
- Serve as a primary responder for security incidents, with a specific focus on malware, viruses, and other endpoint compromises, performing forensic analysis, containment, eradication, and recovery steps during active incidents
- Conduct root cause analysis for security incidents and implement necessary corrective and preventive measures
- Document all incident response activities, findings, and lessons learned to continuously improve the IR process
- Analyze threat intelligence to identify potential risks and vulnerabilities relevant to the organization
- Proactively hunt for threats across the environment using tools like Microsoft Defender XDR
- Develop and implement strategies to defend against prevalent malware types (e.g., ransomware, spyware, trojans)
- Stay ahead of the latest cybersecurity trends, attack techniques, and adversary tactics
- Provide regular reports on the organization's security posture, incident metrics, and platform performance
- Collaborate with IT and other departments to implement security best practices and system hardening across the infrastructure
- Assist in the development and delivery of cybersecurity awareness training for employees
Skills
- A bachelor's degree in information technology, cybersecurity, related field, or equivalent experience
- Relevant cybersecurity certifications (e.g., Microsoft SC-100/200/300/400, CompTIA Security+/CySA+/SecurityX, GIAC GSEC/GCIH)
- 3-5 years of demonstrated experience managing, configuring, and utilizing Microsoft Defender, Purview, and Sentinel
- Strong analytical skills, attention to detail, and ability to provide clarity in complex, unprecedented or ambiguous environments
- Strong organizational, communication and interpersonal skills with the ability to guide and influence technical teams
- Willingness to travel domestically up to 10%, depending on business needs
- To conform to U.S. Government technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C 1324b(a)(3), or eligible to obtain the required authorizations from the U.S
- Experience supporting aerospace and defense organizations subject to CMMC residing in Microsoft 365 GCC High preferred
- Proficiency with compliance tracking tools, GRC platforms, and project management tools a plus
Benefits
- Every employee of Re:Build will share ownership in the company and will share in the financial rewards of the success we achieve together, at all levels of the company!
- Re:Build is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures.
Company Overview