IT Security Analyst

About Appen
Appen is a leader in AI enablement for critical tasks such as model improvement, supervision, and evaluation. To do this we leverage our global crowd of over one million skilled contractors, speaking over 180 languages and dialects, representing 130 countries. In addition, we utilize the industry's most advanced AI-assisted data annotation platform to collect and label various types of data like images, text, speech, audio, and video.
Our data is crucial for building and continuously improving the world's most innovative artificial intelligence systems and Appen is already trusted by the world's largest technology companies. Now with the explosion of interest in generative AI, Appen is helping leaders in automotive, financial services, retail, healthcare, and governments the confidence to deploy world-class AI products.
At Appen, we are purpose driven. Our fundamental role in AI is to ensure all models are helpful, honest, and harmless, so we firmly believe in unlocking the power of AI to build a better world. We have a learn-it-all culture that values perspective, growth, and innovation. We are customer-obsessed, action-oriented, and celebrate winning together.
At Appen, we are committed to creating an inclusive and diverse workplace. We are an equal opportunity employer that does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
As a Security Analyst (Level 1) specializing in Security Event and Alert Monitoring, you will play a critical role in safeguarding the organization's assets by monitoring security events and alerts generated by various systems and tools. You will be responsible for analyzing these events, identifying potential security incidents, and escalating them for further investigation and response. This entry-level position offers an excellent opportunity to gain hands-on experience in cybersecurity and develop foundational skills in threat detection and incident response.

Key Responsibilities

• Security Event Monitoring: Monitor security event logs and alerts generated by security tools, including intrusion detection/prevention systems (IDS/IPS), firewalls, antivirus systems, and endpoint detection and response (EDR) solutions.
• Alert Triage: Review and prioritize security alerts based on severity, relevance, and potential impact on the organization. Perform initial triage to determine whether alerts indicate genuine security threats or false positives.
• Incident Identification: Analyze security events and indicators of compromise (IOCs) to identify potential security incidents, such as malware infections, unauthorized access attempts, or suspicious network activity.
• Investigation Support: Provide support to senior security analysts and incident response teams by gathering additional information, conducting preliminary investigations, and documenting findings related to security incidents.
• Escalation: Escalate confirmed security incidents and critical alerts to senior analysts or incident response managers for further analysis, containment, and remediation.
•  
• Documentation: Maintain accurate records of security events, alerts, and incident response activities in accordance with organizational policies and procedures. Document investigation findings, actions taken, and recommendations for improving detection and response capabilities.
• Collaboration: Collaborate with other IT teams, including network operations, system administrators, and application developers, to gather contextual information and identify potential security issues or vulnerabilities.
• Continuous Improvement: Stay abreast of emerging threats, attack techniques, and security technologies by participating in training programs, webinars, and industry conferences. Contribute ideas for improving security monitoring processes and enhancing detection capabilities.

Qualifications and Experience

• Bachelor's degree in computer science, information technology, or related field (or equivalent work experience).
• Minimum 1-2 years of hands-on experience in SOC (security operations analyst)
• Bachelor's degree in computer science, information technology, cybersecurity, or related field (or equivalent work experience).
• Strong understanding of basic cybersecurity concepts, including common attack vectors, threat actors, and security controls.
• Familiarity with security technologies and tools, such as SIEM (Security Information and Event Management) systems, intrusion detection/prevention systems (IDS/IPS), antivirus software, and endpoint security solutions.
• Basic knowledge of network protocols, TCP/IP stack, and network traffic analysis.
• Analytical mindset with the ability to interpret security event data, identify patterns, and detect anomalies indicative of security incidents.
• Effective communication skills, both verbal and written, with the ability to convey technical information clearly and concisely.
• Ability to work effectively in a fast-paced environment, prioritize tasks, and manage multiple incidents simultaneously.
Relevant certifications such as CompTIA Security+, GIAC Security Essentials (GSEC), or equivalent are a plus, but not required for entry-level positions.

Appen is the global leader in data for the AI Lifecycle with more than 25 years’ experience in data sourcing, annotation, and model evaluation. Through our expertise, platform, and global crowd, we enable organizations to launch the world’s most innovative artificial intelligence products with speed and at scale. Appen maintains the industry’s most advanced AI-assisted data annotation platform and boasts a global crowd of more than 1 million contributors worldwide, speaking more than 235 languages. Our products and services make Appen a trusted partner to leaders in technology, automotive, finance, retail, healthcare, and government. Appen has customers and offices globally.