**Overview** Essential Functions: + Develop operational response processes documentation for security operations + Develop comprehensive and accurate reports and presentations for all levels of the organization + Effectively communicate findings and strategy to stakeholders including technical staff, executive leadership, and legal counsel + Recognize and safely utilize attacker tools, tactics, and procedures + Administer technical security tools for vulnerability management program and provide reports to application owners and stakeholders + Conduct vulnerability scans on a regular cadence and as needed for incident response activities and effectively communicate findings + Maintains the integrity and security of enterprise-wide IT systems and networks + Analyzes penetration test reports to develop and implement remediation plans with cross-functional teams + Supports security initiatives through both predictive and reactive analysis + Actively respond to escalated alerts from MSSP + Manages business client relationships effectively in order to efficiently resolve reported security incidents + Manage internal Email Security and mail flows through the 0365 Defender platform for the Enterprise + Assists in the optimization of enterprise-wide security efforts + Assist in the management of required network security changes and adhere to the processes and procedures in place for Change Management + Consistently delivers tasks in support of IT strategies, projects, and initiatives + Leverages readily available resources to create cost-effective security solutions + Ensures full network coverage and accurate reporting on all security tools + Identifies, evaluates, and reports security vulnerabilities to prioritize the mitigation of potential threats and minimize the overall attack surface + Research emerging cyber security threats and apply necessary countermeasures to maintain a proactive security posture + The Analyst is a subject matter expert responsible for managing threats, disseminating information, and handling, responding to, and investigating all incident escalations from the ABM Security Operations Center. Required Qualifications: Education: + Bachelor’s degree preferred in Cybersecurity, Information Technology, Computer Science, Information Systems, or a related field. Experience: + 5 years’ experience in IT and security operations and incident response + Knowledge of 0365 Defender, Rapid7, VMware, SNOW, Microsoft Sentinel + Strong understanding of privileged access controls + Strong understanding of the NIST CSF and required controls + Technical security certifications or academic background a plus. + Strong verbal and non-verbal communication skills + Able to effectively manage simultaneous security initiatives + Demonstrates collaboration across interfacing teams and functions + Strong critical thinking and advanced troubleshooting abilities + Self-starter that can work efficiently both independently and with teams Licenses: Preferable, but not required: SEC+, GCIH Preferred Qualifications: Education: + Bachelor’s degree preferred in Cybersecurity, Information Technology, Computer Science, Information Systems, or a related field. Experience: + 5 years’ experience in IT and security operations and incident response **Benefit Information:** ​ ABM offers a comprehensive benefits package. For information about ABM’s benefits, visit: ABM Employee Benefits | Staff & Management (https://wpe-media.abm.com/wp-content/uploads/2025/ABM\_2025\_Employee\_Benefits\_Staff\_&\_Management\_No%20Date%209.5.24.pdf) REQNUMBER: 107833 All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.