Role Description:
We are seeking a detail-oriented and proactive Senior Cyber Security Analyst to join our growing cybersecurity team. In this role, you will be responsible for monitoring, analyzing, and responding to security incidents, as well as helping to strengthen QuadReal's overall security posture.

Responsibilities:

• Investigate security incidents, perform root cause analysis, and document findings and remediation steps.
• Collaborate with infrastructure, cloud, networking, and application teams during incident response activities.
• Develop and maintain security documentation, including incident response playbooks, SOPs, and risk assessments.
• Support continuous improvement of security processes, prevention, detection and response capabilities.
• Lead the vulnerability management lifecycle, including scanning, validation, prioritization, remediation coordination, and reporting.
• Conduct regular vulnerability assessments across endpoints, servers, cloud environments, and network infrastructure, & work with stakeholders to remediate identified vulnerabilities.
• Design and execute phishing simulation campaigns and support the cyber security training program to improve user awareness.
• Assist in the implementation and enforcement of security policies, standards, and procedures, ensuring alignment with industry standards (e.g., NIST CSF, ISO 27001).
• Track and report on key security metrics and trends to support continuous improvement.
• Continuously monitor third-party cyber risk exposure, ensuring compliance with regulatory and organizational requirements, and drive remediation of identified security risk.
• Build process automation to streamline workflows, reduce manual effort, improve accuracy, enhance operational efficiency, and enable scalable, consistent execution.
• Maintain awareness of emerging threats, attacker tactics, techniques, and procedures (TTPs), leveraging frameworks such as MITRE ATT&CK.

Experience and Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, or equivalent practical experience.
• Minimum of 5 years of hands-on experience in the following areas: Incident Response, Threat Hunting, Vulnerability Management, Network Security, Identity and Access Management, and Endpoint Security.
• Strong experience with SIEM, SOAR, EDR, VM, DLP, email security technologies.
• Strong knowledge of cybersecurity frameworks and industry standards such as NIST CSF, OWASP, MITRE ATT&CK.
• Solid understanding of TCP/IP, DNS, HTTP/S, and other network protocols, as well as firewall and IDS/IPS technologies.
• Industry certifications such as CompTIA Security+, CEH, CISSP, GSEC, or equivalent are highly desirable.
• Experience with cloud security tools and practices (Azure, AWS, GCP).
• Knowledge of identity and access management (IAM), including MFA, SSO, conditional access, and role-based access control.
• Strong analytical, critical thinking, and problem-solving skills.
• Excellent verbal and written communication skills, with the ability to convey technical concepts to non-technical audiences.
• Able to prioritize and execute tasks in a high-pressure environment
• Thrives in collaborative environments and contributes positively to team dynamics

The expected annualized base salary range for this role is $90,000-$125,000.

#LI-TT1 #LI-Hybrid

Based on the position, QuadReal offers a competitive total rewards package in addition to the base pay, which may include a performance-based incentive plan, comprehensive health & dental benefits, pension plan, and paid time off.

The actual salary offered will take into consideration a wide array of factors including, but not limited to, the individual's skill, experience, education and training, the market compensation of the role, and the consideration to internal equity.

We value diverse experiences and perspectives. Even if your skills don't align 100% with the listed qualifications or salary range, we encourage you to apply - you may be a great fit for this role or others in our community. Applicants may also be considered for alternative positions within the organization where their qualifications and experience align more closely with available opportunities.

We use artificial intelligence (AI) technology - alongside human review - to assist in screening and assessing applicants for this position. Our recruitment team remains involved in all decisions.

Note to Recruiters: QuadReal does not accept unsolicited resumes from any source other than directly from a candidate. Any unsolicited resumes sent to QuadReal, directly or indirectly, will be considered QuadReal property. QuadReal will not pay a fee for any placement resulting from the receipt of an unsolicited resume. A recruiting agency must first have a valid, written and fully executed agency agreement contract for engaged services to submit resumes.