Cybersecurity Analyst

Job Description

Cybersecurity Analyst - Remote

About World Business Lenders

• At World Business Lenders (WBL), we provide flexible, short-term commercial loans backed by real estate to help small and medium-sized businesses across the United States — particularly those facing difficulties with traditional financing. We’re a fast-moving, results-driven organization that takes security seriously as we continue to grow.
• This is a Full-Time Independent Contractor role with working hours from 9:00 AM – 6:00 PM Eastern Standard Time, Monday through Friday. We request that all CVs be submitted in English.

About the Role

We’re looking for a seasoned cybersecurity professional who can take ownership of our security program, from strategy to execution. You’ll work closely with the Cyber Lead to strengthen our security posture, drive compliance, and protect the business as we scale.

What You’ll Be Doing (Key Responsibilities)

• Perform a comprehensive cybersecurity risk assessment and deliver a prioritized remediation plan.
• Design and implement the organization’s overall security strategy and roadmap.
• Establish security monitoring, incident response, and threat detection processes.
• Lead and mature Microsoft 365 and Azure security posture (Defender, Entra ID, Sentinel, Purview).
• Own SOC 1 and SOC 2 compliance readiness and audit preparation.
• Define and enforce IAM policies, MFA standards, and Zero Trust principles.
• Develop and maintain security policies, standards, and documentation.
• Evaluate and manage third-party vendors and SaaS platform security risks.
• Oversee vulnerability management: assessments, tracking, prioritization, and remediation coordination.
• Lead incident response, including coordination with MSPs, infrastructure teams, and leadership.
• Establish security awareness programs and build a security-conscious culture.
• Manage and mentor the Cybersecurity Analyst, providing technical direction and growth opportunities.
• Report cybersecurity risks and program status to senior leadership.
• Evaluate and recommend security tools and technologies.

Education: A Bachelor’s degree in Information Technology, Computer Science, or a closely related field is required.

Experience:

• At least 4–5 years of hands-on experienc e in IT-related projects: with a track record of delivering results in technical or infrastructure-focused environments.
• A minimum of 2–3 years in a dedicated security-focused role or actively leading security initiatives.

Must-Have Requirements

Please ensure you meet all of the following before applying:

• Must be using a Windows device.
• Proven hands-on experience in Disaster Recovery Planning (DRP) and/or Business Continuity Planning (BCP).
• Genuinely flexible and adaptable to possible shift changes as business needs evolve.

Remote Work Requirements

• Stable, reliable internet connection
• Professional and dedicated remote working setup

Preferred Background / Industry Experience:

• BPO – Experience in fast-paced service environments, operations, SLA management, and client coordination.
• IT – Background in software, systems, technical support, or project delivery.
• Telecom – Familiarity with network operations, service provisioning, or customer lifecycle management.
• Fintech – Exposure to digital payments, e-wallets, lending platforms, or financial compliance (KYC/AML).

Key Soft Skills:

• Strong English communication skills, both written and verbal, with the ability to connect well with different teams and stakeholders.
• Comfortable explaining security risks and recommendations in a simple, clear way for non-technical audiences and executives.
• Strategic thinker with a practical and solution-oriented approach.
• Supportive leader with a collaborative approach to mentoring and team development.
• Able to work independently, take initiative, and manage priorities confidently.
• Well-organized with strong project management and coordination skills.
• Adaptable and calm under pressure, especially in fast-paced or evolving environments.

Specific Technical Skills Needed:

• Advanced Microsoft 365 security (Defender for Office 365, Microsoft Purview Exchange Online Protection).
• Azure security architecture (Microsoft Entra ID, Microsoft Defender for Cloud, Microsoft Sentinel).
• Strong understanding of Conditional Access, MFA, and Zero Trust principles, with experience in SIEM implementation and management (Microsoft Sentinel preferred).
• Incident response leadership and foundational digital forensics knowledge.
• Vulnerability management and risk prioritization using frameworks such as NIST and CVSS.
• Identity and Access Management (IAM) design, governance, and privileged access management (PAM).
• SOC 1 / SOC 2 compliance, including gap assessments, control mapping, and audit preparation.
• SaaS security management and third-party risk assessments.
• Familiarity with security frameworks such as NIST CSF, ISO 27001, or CIS Controls.
• Strong understanding of networking, endpoint security, and cloud security fundamentals.

What We Offer

💰 USD compensation

🏖️ Paid Time Off (PTO)

🌍 Fully remote — work from wherever you do your best work!

Ready to Apply?

If this sounds like you, we’d love to hear from you - submit your CV in English and hit Apply!