Corsica Technologies is consistently recognized as one of the top managed IT and cybersecurity providers, helping organizations leverage technology as a competitive business advantage. Our integrated services protect companies and enable them to succeed. As our mission states, we are a key catalyst in protecting organizations, empowering their employees, and enabling their technology to gain a competitive business advantage so they can thrive. Our team is focused on hiring the right people, in the right jobs, to help us continue to grow and move forward in creating a new level of service in the IT industry. Do you have what it takes to join the team? With decades of combined experience in our space, our leadership team thrives on helping their clients solve their most complex IT challenges. If you're up for the challenge and enjoy the satisfaction of knowing your work has made a difference in helping other companies leverage technology as a competitive business advantage, then we want to hear from you today! Cybersecurity Analyst I - 10pm-7am Thursday through Monday Job Purpose The Cybersecurity Analyst is an integral part of the Security Operations Center. The primary function of the role is to provide 24/7/365 monitoring of clients' environments for security events. This includes establishing the extent of a threat, the business impact, and advising the most suitable course of action to contain and remedy the event. A Cybersecurity Analyst must also demonstrate the ability to communicate effectively with key stakeholders and provide in-depth analysis of the event lifecycle. Responsibilities: * Manage the event monitoring and incident response ticket queues and triage as appropriate to meet the established service level agreements. * Promptly transfer cybersecurity tickets to the client, appropriate department, or internal point of contact. * Clearly convey indicators of compromise and containment and remediation steps to clients and IT Services service providers. * Analyze and interpret system, security, and application logs in order to diagnose faults, spot abnormal behavior, and rule out false positives. * Effectively utilize SIEM and Endpoint Detection and Response tools to investigate alerts and anomalies and build accurate timelines related to possible compromise. * Follow established procedures to investigate, escalate, contain, and/or eradicate malicious activity. * Develop and deliver written and oral reports to clients, teammates, and management to aggregate and communicate security information and metrics. * Maintain accurate logs and timelines of tasks and events. * Participate in special projects as required. Education, Experience, and Certifications: Required * One of the following certifications: CompTIA Security+, CompTIA CySA+, CCNA Security, C|EH, SSCP, or equivalent * 1 year work experience in the Information Security or related fields Preferred * Associate's degree in Information Security or related field or 2 years work experience in the Information Security or related fields * Experience with SIEM platforms, firewall management, and endpoint detection and response platforms Competencies and Qualities: * Maintain quality service by following organization standards. * Work with a team, communicate effectively, and