Jr. Cybersecurity Analyst

Essential Functions

• Security Monitoring: Investigate and triage events and incidents from external security partners using SIEM technologies, Endpoint Detection and Response platforms, and various cybersecurity tools. Identify false positives and work with appropriate team members for alert tuning.
• Incident Response: Conduct initial triage and analysis of security events and incidents. Follow incident response plans and playbooks to quickly contain incidents. Provide communication and escalation throughout the incident per the security incident response plan. Investigate phishing reports targeting company recipients to identify and analyze the suspect messages for other infrastructure commonalities across the reports.
• Vulnerability Management: Manage the lifecycle of vulnerabilities from discovery, triage, prioritizing, advising, remediation, and validation. Perform reoccurring and on demand scanning activities of both corporate and cloud environments utilizing various platforms. Provide support and resolution for scanning and vulnerability remediation reporting issues. Manage tickets to ensure requests, incidents, changes, and issues are remediated within proper timelines.
• Documentation: Maintain accurate and detailed documentation of security incidents, forensic timeline of attacks and remediation efforts. Author, update, and improve SOPs, playbooks, and work instructions.
• Policy Compliance: Assist in ensuring compliance with internal security policies, procedures, and industry regulations.
• Continuous Learning: Stay updated on the latest cybersecurity trends, threats, and best practices to help protect the organization against emerging risks.
• Support Security Projects: Work on various cybersecurity projects, such as implementing new security tools, conducting risk assessments, and improving security processes.

Job Summary

GoTo Foods is seeking an entry-level Cybersecurity Analyst to help our Cybersecurity and Incident Response program. The incumbent will be responsible for supporting the Information Security team in protecting GoTo Foods digital assets and information. This role involves triaging, reviewing and responding to partner level one (L1) escalated events, analyzing phishing reports, reviewing threat intelligence sources and responding accordingly, as well as developing security policies, procedures and tool configuration to help accelerate our mission of Feeding People and Potential.

The incumbent should have general knowledge of security monitoring, incident response, and vulnerability management. Familiar with response to cyber security events and incidents by analyzing forensic data, logs, and threat intelligence to validate security threats, assess impact, determine root cause, and help coordinate remediation actions.

The incumbent must have a solid understanding of information technology, including hardware, software and networks.

The ideal candidate will have familiarity with Cyber Kill Chain model and MITRE ATT&CK framework.

We believe diversity and inclusion among our teammates produces better results and is critical to our success as a global company and are committed to recruiting, developing, and retaining the most talented people from a diverse candidate pool.

This role will be expected to work a shift of 11am – 7pm ET and be available for participation on a rotating on-call roster for off hour escalations, including nights and weekends.

Work Location

Fixed Hybrid-Atlanta

Education

• Pursuing or achieved bachelor’s degree or equivalent work experience with a focus on Cybersecurity, Information Technology, or Information Security preferred.

Work Experience

• 1-3 years of experience in IT support, advanced help desk analyst (tier 3) or a related field.
• 0-3 years of experience analyzing logs (e.g. endpoint, network, identity), performing data correlation, and using SIEM or log management tools.
• Basic understanding of the Windows operating system and command line tools, network fundamentals, and cyber security concepts and frameworks.
• Scripting experience for analysis and automation of repeatable processes.

Skills & Abilities

• Analytical Thinking: Strong analytical skills to assess security alerts, identify patterns, and determine the appropriate response to potential threats.
• Attention to Detail: Keen attention to detail to accurately identify vulnerabilities and potential security risks.
• Problem-Solving: Ability to think critically and solve problems in a fast-paced, high-pressure environment.
• Communication: Strong verbal and written communication skills to effectively convey security issues and recommendations to both technical and non-technical stakeholders.
• Technical Proficiency: Familiarity with cybersecurity tools and technologies, such as SIEM systems, vulnerability scanners, firewalls, and endpoint protection.
• Team Collaboration: Ability to work well in a team-oriented environment, collaborating with other Tech and security professionals to achieve common goals.
• Adaptability: Willingness to learn and adapt to new security technologies, methods, and challenges in a rapidly evolving digital landscape.
• Integrity: High level of professionalism, ethics, and discretion in handling sensitive security information.

Travel Requirements

• None

Licenses/Certifications

• Pursuing or holding certifications such as CompTIA Security+, Certified Ethical Hacker (CEH), or similar is preferred.