Cyber Security Operations Analyst

- Monitor Security Information and Event Management (SIEM) alerts, firewall logs, and network activity for any unusual behavior - Analyze internet access and connectivity logs, documenting alerts regarding virus protection, spam, and other suspicious actions - Conduct daily security log reviews, identifying potential threats and sharing relevant alerts with the cybersecurity team - Manage incoming security tickets; document and triage security incidents, escalating them to senior analysts when necessary - Perform scheduled vulnerability scans, analyze results, and maintain logs for remediation tracking - Support patch management processes, including deployment, tracking, and reporting - Collect necessary documentation and evidence for internal and external audits - Maintain compliance documentation as required by regulatory agencies - Create and update procedural documents, security playbooks, and knowledge base articles - Document all incidents and assessments to facilitate audit readiness - Assist in configuring and maintaining endpoint protection and firewall settings - Review vendor solutions and compile summaries for team evaluation - Maintain inventories of security-related tools, software licenses, and access lists - Help develop and distribute basic cybersecurity awareness content for end users - Track completion of required security training and assist in scheduling refresher courses - Participate in an on-call rotation for after-hours and weekend security support