Cybersecurity Analyst

• Monitor the McGraw Hill Splunk SIEM platform for security alerts.
• Handle 2 daily transition calls with the evening SOC team in India, at 9:15 AM EST and 4:15 PM EST.
• Perform standard operating procedures (SOPs) for each alert type, to quickly respond to security alerts and
• investigate them until closure.
• Work with IT personnel to report violations and close security alerts.
• Leverage our security automation tool (Splunk SOAR) for responding to incidents.
• Escalating any P1 (high priority) alerts immediately to the SOC manager
• Perform phishing email attack investigations.
• Perform triage steps when end users fall victim to attacks.
• Perform threat hunting on attack techniques commonly used by adversaries.
• Provide testing and supplemental support for Cybersecurity engineer project tasks.
• Track security incidents in a spreadsheet for monthly metrics.
• Perform daily, weekly, and monthly threat hunting tasks., McGraw Hill uses an automated employment decision tool (AEDT) to assist in the screening process by recommending candidates with "like skills" based on resume and job data. To request an alternative screening process, please select "Opt-Out" when asked to "Consent to use of Automated Employment Decision Tools" during the application. McGraw Hill is an equal opportunity employer. McGraw Hill is committed to celebrating and supporting the differences that make us each unique and will not discriminate based on a person's gender, gender identity or expression, nationality, color, race, ethnicity, religion, sexual orientation, disability, appearance or veteran status. We are proud to be an equal opportunity and affirmative action employer, and we will also provide reasonable accommodation to qualified individuals with disabilities.

• A passion for infosec, analytical skills and a quick learner.
• Basic cybersecurity skills.
• General understanding of servers, applications, LDAP, DNS, IP addressing and subnetting, ports.
• Familiarity with Splunk and how to run Splunk queries is a bonus.
• Awareness or knowledge of Python and PowerShell is a bonus.
• Strong communication skills.
• Understanding of email headers.
• General understanding of malware sandboxing technology.
• Understanding of malware and phishing tools/techniques.

Preferred:

• General understanding of AI and MCP.
• Experience triaging cloud and web-app related security alerts.
• AWS and/or cybersecurity related training and certifications are a plus.

Why work for us?

There has never been a better time to join McGraw Hill. In our culture of curiosity and innovation, you will be able to own your growth and develop as we do.