Cybersecurity Analyst
Years of Experience: 8-11 Years
Job Summary: We are seeking an experienced and proactive Cybersecurity Analyst with 8-11 years of hands-on experience in enterprise security operations, email security, governance, risk management, and security incident coordination. The ideal candidate will play a critical role in strengthening the organization's cybersecurity posture by managing email security platforms, supporting security governance activities, coordinating with cross-functional teams, and ensuring effective implementation of security controls and policies. The candidate should possess strong analytical capabilities, excellent stakeholder management skills, and practical experience handling cybersecurity operations in a fast-paced enterprise environment.
Responsibilities:
- Email Security & Threat Protection: Administer and manage Mimecast email security solutions, monitor and investigate phishing attempts, conduct phishing email analysis, and design phishing simulation campaigns.
- DMARC & Email Authentication Management: Perform DMARC analysis, manage SPF, DKIM, and DMARC configurations, and generate periodic email security reports.
- Endpoint & Device Security: Manage USB device control policies and CrowdStrike EDR/XDR platform, ensuring effective endpoint security controls.
- Change & Access Management: Participate in CAB meetings, provide security recommendations for change requests, and review access requests.
- Incident Management & Investigations: Handle L2 and L3 support tickets, support legal investigations, and coordinate with HR, Legal, and Compliance teams.
- Security Operations & Vendor Coordination: Act as a liaison between Security Operations and IT teams, manage escalations related to Zscaler, and work with external vendors.
- General Security Operations: Handle daily cybersecurity operational tickets, monitor security alerts, and contribute to continuous improvement of cybersecurity processes.
Mandatory Skills:
- Strong hands-on experience with Mimecast administration and email security management.
- Deep understanding of phishing attacks, BEC, spam filtering, and email threat analysis.
- Strong knowledge of DMARC, SPF, DKIM, and email authentication protocols.
- Experience with OneTrust or similar GRC/privacy management platforms.
- Familiarity with endpoint security controls and USB device management.
- Working knowledge of Zscaler security, CrowdStrike, SIEM, DLP, and MDR solutions.
- Understanding of incident response, log analysis, and security investigations.
Preferred Skills:
- Excellent communication and stakeholder management skills.
- Strong analytical and problem-solving abilities.
- Ability to work independently and collaboratively in cross-functional teams.
- Strong documentation and reporting capabilities.
- High attention to detail and confidentiality.
Qualifications:
- Bachelor's degree in information technology, Computer Science, or related field.
- Relevant cybersecurity certifications preferred.
- Experience working in enterprise or multinational environments is preferred.
Key Competencies:
- Security Operations Management (SOC)
- Email Security & Threat Hunting (Mimecast, DMARC)
- Incident Investigation & Coordination (ServiceNow, CrowdStrike, SIEM, DLP & MDR)
- Risk & Compliance (OneTrust)
- Vendor & Stakeholder Management
- Security Governance & Policy Enforcement
- Operational Excellence & Continuous Improvement
