Job Description

Function: Endpoint Security / Incident Response
Level: Junior

We are looking for a Junior Endpoint Security Analyst to join our cybersecurity operations and support the day-to-day protection of company endpoints. This is a strong opportunity for someone who wants to build hands-on experience in incident response, endpoint protection, and security operations while working closely with senior cybersecurity leadership.

What we offer
• A hands-on learning environment.
• Exposure to real-world security operations and investigation workflows.
• Growth opportunity within cybersecurity.

What you will do / Responsibilities
• Monitor, triage, and respond to endpoint security alerts and incidents escalated by the SOC.
• Support the daily operational management of cybersecurity tools and help maintain endpoint security visibility.
• Open, update, track, and close tickets related to security incidents and endpoint issues.
• Investigate suspicious endpoint activity such as malware alerts, phishing-related activity, unauthorized tools, and abnormal behaviour.
• Review, analyse, and respond to suspicious emails and phishing reports, helping to identify malicious content, advise users, and support the containment of email-based threats.
• Assist with containment and remediation actions on affected endpoints, with support from senior team members when required.
• Document findings clearly, maintain case notes, and ensure incidents are properly recorded for audit and follow-up.
• Work with IT infrastructure teams to help resolve endpoint-related security issues efficiently.
• Contribute to improving day-to-day security operations, processes, and response quality.

What we are looking for / Requirements
• A junior profile with an interest in cybersecurity, endpoint protection, and operational security work.
• Basic understanding of incident response, alert triage, and common security threats affecting endpoints.
• Basic ability to assess suspicious emails, recognise phishing indicators, and communicate clearly with users when handling reported email threats.
• Basic understanding of computer networking concepts, including TCP/IP, DNS, DHCP, ports, and network fundamentals relevant to security investigations.
• Good organizational skills and the ability to manage several open tickets or incidents at the same time.
• Comfort working with technical tools, structured procedures, and documented workflows.
• Clear written communication and the ability to escalate issues when appropriate.
• A proactive attitude, willingness to learn, and a calm approach under pressure.
• Background in cybersecurity, IT, systems administration, technical support, or a related area is an advantage.

Nice to have
• Exposure to EDR/XDR tools such as Microsoft Defender, Palo Alto Cortex XDR, CrowdStrike, or SentinelOne.
• Exposure to SOC operations, SIEM workflows, or security monitoring platforms.
• Exposure to email security analysis, phishing triage, or secure mail gateways is an advantage.
• Basic knowledge of Windows administration, Active Directory, Microsoft 365, or endpoint management tools.
• Awareness of phishing, malware analysis basics, and common attacker techniques.
• Basic scripting knowledge in PowerShell or Python.

Equal opportunity
We are an equal opportunity employer and value diverse backgrounds and experiences.