Cybersecurity Operator

We provide technology that community financial institutions use to manage risk and drive growth. Our solutions automate key processes – from anti-money laundering to fraud detection to CECL readiness to lending workflows – empowering our customers by addressing their Enterprise Risk Management needs.  

The Cybersecurity Operator sits within the Security Operations Team and is responsible for real-time monitoring, triage, and escalation of security events across corporate and cloud environments. This role serves as a frontline defender, analyzing alerts from SIEM, EDR, and email security platforms, and escalating potential threats to Cybersecurity Analysts.

This position also supports recurring security operations activities, including access reviews, phishing simulation reporting, security metrics collection, and audit support. All activities are performed in alignment with established procedures and NIST 800-61 incident response standards, ensuring consistent detection, escalation, and documentation of security events. This role reports to the Director, Security Operations and is hybrid-remote based in our Raleigh, NC office.

What You’ll Do:

Alert Monitoring & Incident Triage

• Monitor security alerts across SIEM, EDR, and email security platforms
• Perform first-tier triage, classifying alerts based on known behaviors, false positives, and SOPs
• Document incidents, artifacts, and actions in accordance with NIST 800-61
• Review email quarantine for potential threats and policy violations

Operational Security & Compliance Support

• Conduct periodic user access reviews to validate least-privilege alignment
• Support access recertification campaigns and track completion
• Assist in reviewing security tooling exceptions
• Support audits, assessments, and compliance reviews through evidence collection and validation
• Collect and validate security metrics for leadership dashboards

Security Awareness & Phishing Program Support

• Support execution of phishing simulation campaigns
• Compile and analyze phishing metrics (click rate, reporting rate, credential capture)
• Assist in preparing reports and materials for leadership review

General Security Operations Support

• Assist investigations by gathering logs, artifacts, and supporting data
• Conduct research on emerging threats and vulnerabilities as assigned
• Support security awareness initiatives and onboarding logistics
• Contribute to detection engineering improvements by identifying gaps in telemetry

What You’ll Need:

• Associate or bachelor’s degree in cybersecurity, information security, or related field (preferred)
• 0–2 years of relevant cybersecurity or IT experience
• Foundational understanding of:
  • Threat detection and incident response
  • Access management and least privilege principles
  • Endpoint security and data protection
  • Network fundamentals (TCP/IP, DNS, HTTP/S)
• Strong attention to detail and ability to follow SOPs
• Strong written and verbal communication skills
• Ability to collaborate effectively across teams

Preferred Qualifications:

• Exposure to SIEM platforms (e.g., Rapid7, Splunk)
• Exposure to EDR solutions (e.g., CrowdStrike, Microsoft Defender)
• Familiarity with Microsoft 365 security tooling
• Experience or exposure to AWS or Azure environments
• Entry-level security certifications (Security+, CySA+, ISC2 CC, or similar)

• Market competitive total rewards package
• To be part of the Heart & SOUL of a winning company with an inspiring mission
• The opportunity to Make Big Things Happen
• Competitive salary along with full health benefits with an HSA option
• Flexible PTO and bank holidays
• 401(k) plan and company match

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, age, genetic trait, sexual orientation, national origin, disability status, or any other characteristic protected by law.  Abrigo is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at careers@abrigo.com with the subject line accommodation.