Cybersecurity Analyst (Security and AI Governance)
Cogent Communications · Overland Park, KS · 5 days ago
On-siteInformation Technology$100k–$120k/yrFull-time
Job Summary
The Cybersecurity Analyst (Security & AI Governance) is responsible for protecting the organization's information assets, technology infrastructure, applications, cloud environments, data, and artificial intelligence (AI) initiatives from cyber threats and misuse. This role serves as a key contributor to both cybersecurity operations and AI governance programs by identifying, assessing, monitoring, and mitigating risks associated with Information Systems as well as AI-enabled technologies.
Essential Duties and Responsibilities
- Monitor security systems, networks, applications, cloud platforms, and AI-enabled services for suspicious activity and potential threats.
- Analyze security alerts and investigate cybersecurity incidents to determine root causes and appropriate remediation actions.
- Support incident response activities, including containment, eradication, recovery, and post-incident analysis.
- Conduct vulnerability assessments and coordinate remediation efforts with technical and business stakeholders.
- Review and analyze security logs from various sources, including firewalls, intrusion detection/prevention systems, endpoint protection platforms, cloud environments, identity providers, AI platforms, and other security technologies.
- Perform security assessments and risk analyses of systems, applications, AI solutions, and business processes.
- Aid in the development, implementation, and continuous improvements of cybersecurity and AI governance policies, standards, procedures, and controls.
- Collaborate with IT, software development, and business teams to implement security best practices and controls (security-by-design principles and secure technology solutions).
- Participate in the review, risk assessment, and governance oversight of internally developed AI solutions, machine learning models, and employee-driven AI initiatives.
- Evaluate third-party AI vendors, applications, and services for cybersecurity, privacy, compliance, data protection, and operational risks.
- Identify, assess, and monitor risks associated with generative AI, large language models (LLMs), machine learning platforms, prompt injection attacks, data leakage, insecure APIs, and AI supply chain vulnerabilities.
- Aid in the development and administration of the organization's AI governance and Shadow AI oversight programs.
- Support secure development practices for internally developed applications and AI-enabled solutions, and emerging technology initiatives.
- Maintain, optimize, and enhance security tools and technologies to ensure optimal performance and effectiveness.
- Participate in security awareness and AI awareness training initiatives for employees.
- Aid with audits, compliance reviews, AI governance assessments, and regulatory reporting requirements.
- Research emerging cybersecurity threats, vulnerabilities, cybersecurity trends, AI technologies, and industry best practices and recommend appropriate mitigation strategies/countermeasures.
- Maintain inventories of approved AI solutions, AI vendors, and AI-related business initiatives.
- Develop and maintain reports, dashboards, metrics, risk assessments, and documentation related to cybersecurity operations, AI governance, compliance, and enterprise risk management activities.
Qualifications
- Cybersecurity, Computer Science, Information Systems, Data Science, or related Associate's or Bachelor's degree.
- Minimum of 2-5 years of experience in cybersecurity, information security, application security, cloud security, software development, or a related technical role.
- Experience with security monitoring, incident response, vulnerability management, risk assessment, and security control implementation.
- Familiarity with generative AI, machine learning concepts, large language models (LLMs), or AI-enabled business applications.
- Strong hands-on information security skills and experience.
- Ability to work independently on projects as assigned.
- Excellent communication, presentation, and organizational skills.
- Strong analytical and problem-solving abilities.
Proficient in the Following Areas
- Knowledge of cybersecurity frameworks and standards, including CIS Controls, NIST Cybersecurity Framework, and security best practices.
- Familiarity with AI governance principles and emerging AI risk management frameworks.
- Understanding of network security concepts, endpoint security technologies, identity and access management systems, threat detection methodologies, and cloud security principles.
- Knowledge of application security concepts, API security, and secure software development practices.
- Understanding of risks associated with generative AI platforms, LLMs, prompt injection, data privacy, and AI model security.
Physical Requirements
- Remains in a sitting/stationary position continually or almost continually during the work day.
- Operates a computer and performs desk-based computer tasks continually; frequently viewing a computer screen.
- Rarely lifting, carrying, pushing, pulling objects and/or equipment that weighs up to 50 pounds.
Compensation
Compensation: [Starting / Initial] Base Salary Pay Range: $100,000/yr - $120,000/yr
Specific offers within the listed pay ranges are determined by a variety of factors such as experience, education, skills, certifications and business needs.
Physical Requirements
- Remains in a sitting/stationary position continually or almost continually during the work day.
- Operates a computer and performs desk-based computer tasks continually; frequently viewing a computer screen.
- Rarely lifting, carrying, pushing, pulling objects and/or equipment that weighs up to 50 pounds.