Remote Cybersecurity Analyst Jobs in Riverton, Utah

• *Job Title:** Remote Remote Cybersecurity Analyst • *Location:** Remote — based in Riverton, Utah --- About the Role We are seeking an inquisitive, detail‑oriented Remote Cybersecurity Analyst to join our fast‑growing InfoSec team. In this role you will be the first line of defense for our clients’ data and infrastructure, turning raw security events into actionable intelligence that protects critical assets across cloud, on‑premise, and hybrid environments. Reporting directly to the **Senior Manager of Information Security**, you will partner with threat hunters, security engineers, and product owners to design, implement, and continuously refine detection and response processes. If you thrive on solving complex puzzles, love collaborating with a distributed team, and want to make a measurable impact on the security posture of a company headquartered in Riverton, Utah, this is the opportunity you’ve been waiting for. --- Key Responsibilities - **Monitor and triage alerts** in SIEM platforms (Splunk, IBM QRadar) to achieve a 95 % reduction in false‑positive investigation time. - **Conduct threat‑intel analysis** using open‑source feeds (MISP, AlienVault) and commercial sources (Recorded Future) to enrich incident tickets in ServiceNow. - **Perform endpoint investigations** with CrowdStrike Falcon and Carbon Black, producing detailed forensic reports within 24 hours of detection. - **Run regular vulnerability scans** (Nessus, Qualys) on cloud workloads (AWS, Azure) and on‑prem servers, tracking remediation metrics to ensure ≥ 90 % patch compliance each quarter. - **Develop and tune detection rules** for IDS/IPS solutions (Palo Alto, Snort) and cloud native services (AWS GuardDuty, Azure Sentinel) to improve detection coverage by at least 10 % YoY. - **Collaborate with engineering and DevSecOps** to embed security controls in CI/CD pipelines (GitHub Actions, Jenkins), reviewing code for insecure configurations and advising on remediation. - **Lead post‑incident debriefs**, documenting root cause, impact, and lessons learned, and updating playbooks stored in Confluence for future reference. - **Create automated scripts** (Python, Bash) to streamline log parsing, data enrichment, and repetitive investigation tasks, reducing manual effort by an estimated 30 %. - **Provide senior‑level support** for third‑party risk assessments, ensuring compliance with frameworks such as NIST CSF, ISO 27001, and SOC 2 for clients located throughout Riverton, Utah and beyond. - **Mentor junior analysts** (2–3 per quarter) through monthly knowledge‑share sessions, fostering a culture of continuous learning within our remote team. --- Required Qualifications 1. Bachelor’s degree in Computer Science, Information Security, or a related field **or** equivalent hands‑on experience. 2. **3–5 years** of professional experience as a security analyst, InfoSec analyst, or cyber analyst in a SOC environment. 3. Proven proficiency with at least **four** of the following tools: Splunk, IBM QRadar, CrowdStrike Falcon, Carbon Black, Nessus, Qualys, Palo Alto firewalls, Snort, AWS GuardDuty, Azure Sentinel. 4. Strong scripting abilities in **Python** (or PowerShell) to automate data collection, enrichment, and reporting. 5. Experience with ticketing and workflow platforms (ServiceNow, Jira) and documentation suites (Confluence, SharePoint). 6. Solid understanding of networking concepts (TCP/IP, DNS, HTTP/HTTPS) and security protocols (TLS, SSH, IPsec). 7. Ability to articulate technical findings to both technical and non‑technical stakeholders, with excellent written and verbal communication skills. 8. Must possess a current **CompTIA Security+** or **CISSP** (or be actively pursuing). --- Preferred Qualifications - Certifications such as **CEH, OSCP, or GSEC**. - Prior exposure to **cloud security** (AWS, Azure, GCP) and related compliance frameworks (PCI‑DSS, HIPAA). - Experience with **penetration testing** tools (Metasploit, Burp Suite) to emulate adversary tactics. - Demonstrated leadership in running tabletop exercises or red‑team/blue‑team simulations. - Familiarity with **Zero Trust Architecture** and identity‑centric security models (Okta, Azure AD). - History of contributing to open‑source security projects or publishing research in security forums. --- Compensation & Benefits - **Base salary:** $95,000 – $125,000 annually, commensurate with experience and certifications. - **Performance bonus:** Up to 12 % of annual salary based on KPI achievement. - **Equity:** Stock options after 12 months of continuous service. - **Health & wellness:** Medical, dental, vision, and a $1,200 annual wellness stipend. - **Retirement:** 401(k) with company match up to 5 %. - **Remote work allowance:** $150 per month for coworking spaces, ergonomic equipment, or high‑speed internet in Riverton, Utah. - **Professional development:** $2,500 annual learning budget, paid conference tickets, and subscription to platforms such as Pluralsight or O’Reilly. - **Paid time off:** 18 days + company holidays, plus unlimited sick days. --- Work Setup - **Time zone alignment:** Core hours are 10 AM – 4 PM EST; our team spans the United States, but we require at least **3 hours** of overlap with the Eastern Time zone to facilitate real‑time collaboration. - **Meeting cadence:** Daily stand‑ups (15 min, 85 % async via Slack huddles), bi‑weekly sprint reviews, and weekly incident response debriefs via Zoom. - **Technology stack:** Slack for instant messaging, Zoom for video conferences, Jira for agile workflow, Confluence for documentation, and GitHub for version control. - **Equipment requirement:** A minimum of 25 Mbps upload/download, dual monitors, and a secure VPN connection (Cisco AnyConnect) to access internal assets. We will ship a corporate laptop (Apple MacBook Pro or Dell XPS) to your home office in Riverton, Utah. - **Security posture:** All remote endpoints must be enrolled in our Mobile Device Management (MDM) solution and run full‑disk encryption. --- Growth - **Career ladder:** From Remote Cybersecurity Analyst → Senior Cybersecurity Analyst → Security Engineering Lead → Manager, Information Security. - **Performance cycles:** Quarterly OKR reviews with clear metrics tied to threat detection rates, remediation speed, and knowledge‑share contributions. - **Mentorship program:** Pairing with a senior security engineer for bi‑monthly one‑on‑one coaching sessions, focused on technical depth and soft‑skill development. - **Learning budget:** $2,500 per year per employee, plus access to internal labs (range of virtual machines, containerized attack simulations) to practice incident response and penetration testing. - **Certification support:** We reimburse exam fees for industry‑standard certifications (CISSP, OSCP, CCSP) upon successful completion. --- How to Apply 1. Submit your **resume**, a concise **cover letter** outlining your most relevant experience, and any **publicly available security research or GitHub projects** that demonstrate your technical abilities. 2. Applications are accepted through our career portal; please reference **Job ID #RCYB‑Riverton‑Utah** in the subject line. 3. **Timeline:** Initial resume screen within 5 business days, followed by a 30‑minute phone screen with the hiring manager, a technical interview (live case study using Splunk), and a final culture interview with the senior leadership team. 4. We aim to make a hiring decision within **3 weeks** of the final interview. We are an **Equal Opportunity Employer**. We celebrate diversity and are committed to creating an inclusive environment for all employees, regardless of race, color, religion, gender, sexual orientation, gender identity, age, national origin, disability, or veteran status. --- • If you are excited to protect our clients, advance your security career, and work from the comfort of your home in Riverton, Utah, we encourage you to apply today. Together, we will build a safer digital future.*