Cybersecurity Analyst

Level
Austin, US

Who this role is best for

Best suited to mid-level cybersecurity analysts with hands-on experience in security monitoring and incident response, working in an education technology environment in Austin.

Best fit for

  • Candidates with 3-5 years of hands-on security operations experience will align well.
    — “3-5 years of hands-on experience in a cybersecurity analyst
  • Analysts comfortable with both endpoint security and cloud environments fit the technical profile.
    — “Hands-on experience with endpoint security platforms and EDR tools
  • Those familiar with Zero Trust implementation will find immediate relevance.
    — “Understanding of Zero Trust concepts and practical enterprise application

Things to consider

  • Relocation to Austin is required unless already local.
    — “Based in Austin, TX or willing to relocate
  • Certifications like CompTIA Security+ are strongly preferred.
    — “CompTIA Security+ (strongly preferred), CySA+, or equivalent certification

How to stand out

  • Highlight specific instances where you tuned detection rules to reduce noise.
    — “Tune and maintain detection rules, alerts, and dashboards
  • Demonstrate experience with DevSecOps integration in past projects.
    — “Collaborate with development and IT ops teams to integrate security
  • Showcase hands-on work with cloud security in Azure, AWS, or GCP.
    — “Basic cloud security knowledge in at least one of Azure, AWS, or GCP
Pace · Fast PacedCollaboration · HighAutonomy · MediumDecision Impact · TeamLevel · Mid

Derived from job-description analysis by Serendipath's career intelligence engine.

What success looks like

  • reduced security incidents
  • improved security posture
  • optimized detection rules
Typical background
cybersecurity analystSOC analyst

Skills & requirements

Required

CybersecurityIncident_responseSIEMEDRNetwork_monitoringThreat_huntingIr_playbooksMdm_operationsZero_trust

Preferred

DevSecOpsCloud_securityThird_party_risk_management

Stack & domain

Security MonitoringLog AnalysisSiem PlatformsIncident ResponseEndpoint SecurityIdentity And Access ControlsNetwork Traffic MonitoringCloud EnvironmentsVulnerability ScansDevSecOpsAnalytical SkillsProblem-solving SkillsAttention To DetailComptia Security+Cysa+Cybersecurity

About the role

Original posting from Level via Ashby

Level is a learning technology company dedicated to helping students build real academic and life skills with confidence and joy. We combine proven curriculum principles with world class interactive design to make meaningful practice something students want to come back to, not something they struggle through.

We support what teachers, schools, and parents are already doing by increasing student engagement with high quality, standards aligned practice that reinforces classroom learning. That's why we're building:

For students: Rewarding and motivating learning experiences that meet students where they are to build real academic proficiency.

For educators: Tools that fit naturally into instruction and help students stay engaged while reducing teacher workload.

For parents: Activities that help your kid catch up or get ahead, build confidence, and minimize homework battles, whether learning at school or at home.

We are committed to helping every person maximize their potential and live a life of meaning. It's a difficult problem that requires brilliant people and tremendous effort over time.

Level is looking for a skilled and motivated Cybersecurity Analyst to join our security team and help protect the organization's systems, networks, and data from evolving cyber threats. This is a hands-on technical role that requires a strong foundation in security monitoring, threat detection, incident response, and endpoint security. Reporting to the Director of Cybersecurity, this analyst will be a key contributor to day-to-day security operations, working across network security, cloud environments, and endpoint management tools to identify risks, respond to incidents, and continuously improve the organization's security posture.

What You Will Do:

  • Monitor and analyze security alerts and events across SIEM, EDR, and network monitoring platforms
  • Investigate security incidents, anomalies, and potential threats to determine scope and impact
  • Tune and maintain detection rules, alerts, and dashboards to reduce noise and improve fidelity
  • Conduct threat hunting to proactively identify indicators of compromise (IOCs) and attacker TTPs
  • Participate in incident response including containment, eradication, and recovery; document timelines and remediation actions
  • Assist in developing and maintaining IR playbooks, runbooks, and escalation procedures
  • Administer endpoint security tools including EDR/antivirus platforms and support MDM operations
  • Manage identity and access controls, enforce RBAC policies, and conduct access reviews
  • Monitor network traffic and logs for suspicious activity; assist in maintaining firewall rules and network segmentation
  • Support Zero Trust implementation efforts and least-privilege enforcement
  • Monitor cloud environments (Azure, AWS, or GCP) for misconfigurations and policy violations
  • Assist with vulnerability scans, remediation tracking, and compliance assessments (NIST CSF, SOC 2, CIS Controls)
  • Collaborate with development and IT ops teams to integrate security into CI/CD pipelines (DevSecOps)
  • Assist with third-party risk management and security audits

Qualifications

Need to Have:

  • 3-5 years of hands-on experience in a cybersecurity analyst, SOC analyst, or related technical security role
  • Solid understanding of security monitoring, log analysis, and SIEM platforms
  • Experience participating in incident response activities, including investigation and remediation
  • Working knowledge of network security fundamentals: TCP/IP, firewalls, DNS, VPNs, IDS/IPS
  • Hands-on experience with endpoint security platforms and EDR tools
  • Experience with MDM platforms for device management and policy enforcement
  • Understanding of RBAC and IAM principles in enterprise environments
  • Familiarity with Zero Trust concepts and practical enterprise application
  • Basic cloud security knowledge in at least one of Azure, AWS, or GCP
  • Familiarity with DevSecOps principles and secure SDLC practices
  • Strong analytical and problem-solving skills with exceptional attention to detail
  • Based in Austin, TX or willing to relocate prior to start date

Nice to Have:

  • CompTIA Security+ (strongly preferred), CySA+, or equivalent certification
  • Microsoft Certified: Security Operations Analyst Associate (SC-200) or Azure Security Engineer Associate (AZ-500)
  • CEH, GIAC GSEC, GCIA, or GCIH

Source: Level careers (Ashby)

Similar roles