Cybersecurity Analyst

US Citizenship is required for this role

Job Summary:

We are hiring a Senior Cybersecurity Specialist to join our Security Operations team. You will lead efforts to design, implement, and secure our global information systems, protecting them from unauthorized access, data breaches, and accidental loss.
 

In this role, you’ll collaborate with senior leadership to develop security strategies, oversee monitoring and incident response, and mentor junior analysts while driving innovation in security operations

How You Will Make an Impact at Avnet, Inc.:

As a member of the Security Operations team, you will play a key role in protecting our global organization by monitoring, detecting, analyzing, and responding to cyber threats. We are seeking a committed professional to help secure our systems and data at a global scale

Your responsibilities will include:

• Threat Mitigation: Leading efforts to detect, respond to, and mitigating complex cyber threats.
• Proactive Security: Identifying and addressing vulnerabilities across networks, cloud environments, and third-party services.
• Risk Advisory: Guiding senior leadership on security risks and regulatory compliance (e.g., GDPR, ISO27001, PCI DSS).
• Security Enhancement: Maturing our security framework to strengthen resilience and team performance.
• Log and Analytics Management: Monitor and analyze logs from critical systems to ensure comprehensive oversight and actionable insights.
• Threat Intelligence and Risk Management: Conduct threat modeling, vulnerability assessments, and implement strategic mitigations.
• Adversary Defense Strategies: Leverage frameworks like MITRE ATT&CK to counter advanced cyber threats.
• Policy Governance: Develop and maintain security policies to align with global standards and evolving threats.
• Cloud Security: Safeguard hybrid and multi-cloud environments, ensuring compliance and secure operations.
• Incident Response: Lead detection, containment, recovery, and forensic investigations for security incidents.
• Leading initiatives to detect, respond to, and mitigate complex cyber threats.
• Developing advanced security solutions and strategies to protect our digital assets and infrastructure.
• Identifying and addressing security vulnerabilities and risks across the organization’s networks, cloud environments, and third-party services.
• Driving the continuous improvement of our security framework to build a strong and resilient security team

Work Experience:

• Typically, 5+ years with bachelor's or equivalent.

Education and Certification(s):

• Bachelor's degree or equivalent experience from which comparable knowledge and job skills can be obtained.

Principal Responsibilities:

• Expertise and Knowledge: Deep understanding of SOC functions, industry best practices, and security principles.
• Problem-Solving: Skilled in analyzing complex issues and developing effective solutions, including policy and procedure improvements.
• Incident Management: Proficient in handling incidents, intelligence gathering, and applying kill chain methodology.
• Autonomy and Judgment: Works independently with discretion and significant latitude in setting objectives and approaches.
• Cross-Functional Collaboration: Serves as a primary contact for projects, interacting with senior professionals and coordinating across departments.
• MSP Oversight: Manages partnerships with managed service providers and supports onboarding of MSP services.

Minimum Qualifications:

· Conduct gap analysis and remediation for compliance.

· Communicate security risks effectively in a global, multi-stakeholder environment.

· Stay current on evolving threats, especially in supply chain sectors.

· Exhibit strong organizational, project management, and critical thinking skills.

· Work flexible hours, including on-call rotations, under tight deadlines.

· Collaborate effectively in teams and independently with a positive, growth-oriented mindset.

Technical Competencies

• Strong networking and security skills
• Incident Response
• MITRE ATT&CK Framework
• Threat hunting
• Digital forensics
• Cloud Security
• Microsoft Azure: Sentinel, Defender, Entra ID, etc.
• IT Security (e.g., Security Engineering, Attack Surface Management, etc.)
• Risk management
• Vulnerability Management platforms

Additional Skills (not required, but nice to have)

• Security related certifications like CISSP/CCSP and Incident Response certification(s)
• Experience with chain-of-custody for cybersecurity related incidents and processes
• Operational Technology (OT) Cybersecurity related experience

• Onboarding and maintaining Managed Services Provider across multiple platform types
• Prior infrastructure technical background

#LI-HYBRID

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills.