Broxer
Join
K

Cybersecurity Analyst

KPI Solutions

Cincinnati, OH · Full Time

Be the first to apply

Experience
Any
Salary
Openings
1
Posted
6 hours ago
Work mode
In office
Education
B.Tech
Eligibility
Candidates with a relevant bachelor’s degree or equivalent experience who also have progressive experience in software, automation, or logistics environments may apply. The role is intended for applicants able to work onsite in Cincinnati, OH or Kansas City, MO, with occasional travel under 10%.
Resume
Required to apply

Where you'll work

Job description

Role Overview

This position owns the daily security operations program for KPI Solutions. The analyst is responsible for round-the-clock threat detection, investigation, containment, and recovery, while also acting as the main technical contact for the company’s security tools and compliance efforts. The role works closely with IT Operations, Infrastructure, Compliance, business teams, vendors, and clients to continuously improve the organization’s security posture.

Core Responsibilities

The work spans incident response, audit support, access governance, endpoint protection, email and DNS security, backup and disaster recovery validation, network controls, asset oversight, data protection, mobile/device management, identity controls, awareness training, policy documentation, reporting, and vendor coordination.

  • Continuously watch security alerts and event queues across networks, servers, cloud systems, and endpoints, using platforms such as Rapid7 InsightIDR, Microsoft Defender, and Abnormal Security.
  • Perform initial triage, containment, isolation, and restoration actions for suspicious activity and confirmed incidents.
  • Investigate intrusions, phishing, account compromise, and token theft cases; review mailboxes, remove malicious inbox rules, and assess possible data exposure.
  • Coordinate incident follow-up with MDR/MSSP partners and execute documented response playbooks.
  • Prepare technical incident documentation and formal write-ups for tracking tools such as Jira.
  • Support SOC 2 Type 2 and related audit work by supplying evidence, logs, screenshots, exported settings, and remediation records.
  • Act as the technical lead for audit readiness and quarterly security reviews.
  • Define and maintain privileged access policies, review privileged accounts on a recurring basis, and approve or reject access requests.
  • Track endpoint security baselines, device compliance, EDR/NGAV coverage, and encryption status.
  • Work with IT Operations and Compliance to verify patch deployment and respond to critical vulnerabilities reported by vendors.
  • Design and maintain email authentication and filtering controls such as SPF, DKIM, and DMARC, and fine-tune phishing protections.
  • Review mail-borne threats, make quarantine release decisions, and keep evidence for mail security controls.
  • Validate backup security settings, confirm encryption, and participate in disaster recovery tests while documenting outcomes.
  • Define segmentation expectations, verify enforcement, and retain evidence for firewall, VLAN, IDS/IPS, and SIEM configurations.
  • Maintain asset classification records, map systems into audit scope, and identify unmanaged or unmonitored devices for remediation.
  • Adjust DLP rules, support agent deployment and maintenance, and investigate DLP alerts.
  • Enforce mobile and application protection policies through MDM/MAM tools and monitor device enrollment and access from managed devices.
  • Support SSO rollouts, conditional access design, roster reconciliation, offboarding checks, and ongoing identity compliance monitoring.
  • Run phishing simulations, assign role-based security awareness training, track completion, and escalate overdue training.
  • Draft and maintain security policies, standards, baselines, guidelines, procedures, incident response plans, and operational security documents.
  • Compile management reports, KPIs, vulnerability and risk review inputs, and threat intelligence summaries.
  • Monitor threat intelligence and apply frameworks such as MITRE ATT&CK to identify tactics, techniques, and procedures.
  • Evaluate and manage relationships with security vendors, coordinate penetration tests, and review testing deliverables.
  • Manage projects, vendors, and contractors supporting cybersecurity and compliance initiatives.

Requirements

  • Bachelor’s degree in Computer Science, Electrical Engineering, Information Security, or a related area; comparable experience may substitute.
  • Progressive professional experience in software, automation, or logistics settings with a strong service mindset, employee engagement, and accountability.
  • Practical administration experience with SIEM/EDR tools, Microsoft Defender, Abnormal Security or a similar email security platform, KnowBe4 or a comparable security awareness tool, Intune, and a PAM solution such as Securden.
  • Working knowledge of SOC 2 Type 2 evidence collection and audit support.
  • Strong organization, project management, and written and verbal communication skills, along with the ability to build trust across levels of the business.
  • High ethical standards, sound judgment, initiative, and a proactive, energetic working style.
  • Preferred onsite presence in Cincinnati, OH or Kansas City, MO.
  • Occasional travel to company offices or client locations, generally under 10%.

Preferred Skills and Experience

  • Microsoft Purview and data protection tools
  • Microsoft Intune
  • Rapid7
  • Microsoft 365 and Azure
  • SharePoint
  • Vanta
  • MITRE ATT&CK framework knowledge
  • Security-related certifications such as Security+, CySA+, or CISSP

Supervisory Scope

The role oversees projects, vendors, and contractors that support cybersecurity and compliance programs.

Benefits

  • Medical insurance
  • Dental insurance
  • Vision insurance
  • Health care concierge service
  • 401(k) retirement plan with pre-tax and Roth options
  • Company-paid basic life insurance, short-term disability, and long-term disability
  • Voluntary life and AD&D insurance
  • Voluntary accident, critical illness, and hospital indemnity insurance
  • Pet insurance
  • Milk Stork program
  • Wellness program with gift card redemption and wellness challenges
  • Paid time off including vacation, sick time, and 10 holidays
  • Training and development

Additional Information

This job summary reflects the general nature and level of work expected for the role. It is not intended to be a complete list of every task, duty, or responsibility. The company may modify duties and assign additional work as needed, with or without advance notice.

Equal Opportunity

KPI Solutions is committed to equal employment opportunity. Hiring decisions are made without regard to race, color, creed, religion, gender, age, sexual orientation, national origin, disability, veteran status, or any other protected characteristic under applicable local, state, or federal law.

Why KPI Solutions

The organization emphasizes innovation, accountability, and continuous improvement. This position offers the chance to make a tangible impact on project outcomes and overall business performance.

Skills

Microsoft Intune Security Operations Incident Response Patch Management Threat Intelligence Identity and access management Endpoint security SIEM Monitoring Data Loss Prevention Privileged Access Management Email Security SOC 2 Compliance

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files