Axelon
Job Title: Cybersecurity Lead Analyst (Hybrid)
Locations: Chicago, IL; Iselin, NJ; New York, NY; Portland, OR
Leadership & Strategy Lead the cybersecurity team, providing mentorship, guidance, and performance management. Develop and execute the organization's cybersecurity strategy aligned with business goals. Collaborate with IT leadership and stakeholders to assess risk and define security priorities.
Microsoft Security Operations
Administer and optimize Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365. Manage and monitor Microsoft Sentinel for threat detection, incident response, and log analytics. Implement and maintain Microsoft Purview for data governance, compliance, and information protection. Oversee Entra ID (Azure AD) identity and access management, including Conditional Access and Privileged Identity Management (PIM). Conduct regular reviews of security configurations and policies across Microsoft 365 and Azure environments. Conduct monthly Attack Simulations
Threat Management & Incident Response
Lead threat hunting and incident response activities using Microsoft XDR and SIEM tools. Develop and maintain playbooks for automated response in Sentinel and Defender. Coordinate with internal teams and external partners during security incidents and investigations.
Governance, Risk & Compliance
Ensure compliance with industry standards (e.g., NIST, GDPR, LGPD, DORA, other local data privacy laws). Conduct risk assessments and vulnerability scans; manage remediation efforts. Maintain documentation for security policies, procedures, and audit readiness.
Training & Awareness
Promote security awareness across the organization through training and communication. Stay current with emerging threats, vulnerabilities, and Microsoft security innovations.
Leadership & Strategy Lead the cybersecurity team, providing mentorship, guidance, and performance management. Develop and execute the organization's cybersecurity strategy aligned with business goals. Collaborate with IT leadership and stakeholders to assess risk and define security priorities.
Microsoft Security Operations
Administer and optimize Microsoft Defender for Endpoint, Identity, Cloud Apps, and Office 365. Manage and monitor Microsoft Sentinel for threat detection, incident response, and log analytics. Implement and maintain Microsoft Purview for data governance, compliance, and information protection. Oversee Entra ID (Azure AD) identity and access management, including Conditional Access and Privileged Identity Management (PIM). Conduct regular reviews of security configurations and policies across Microsoft 365 and Azure environments. Conduct monthly Attack Simulations
Threat Management & Incident Response
Lead threat hunting and incident response activities using Microsoft XDR and SIEM tools. Develop and maintain playbooks for automated response in Sentinel and Defender. Coordinate with internal teams and external partners during security incidents and investigations.
Governance, Risk & Compliance
Ensure compliance with industry standards (e.g., NIST, GDPR, LGPD, DORA, other local data privacy laws). Conduct risk assessments and vulnerability scans; manage remediation efforts. Maintain documentation for security policies, procedures, and audit readiness.
Training & Awareness
Promote security awareness across the organization through training and communication. Stay current with emerging threats, vulnerabilities, and Microsoft security innovations.