Cybersecurity Analyst

Before we get into the specifics of the role, there are a few things we want you to know:

At the Orlando Magic, our approach is to not only learn as much about you as we can, but for you to learn about us. This is definitely a two-way street, so time with your potential new leader, teammates, and/or other departments that the role will work with is critical. It isn’t just, “what are we looking for”, but also, “what do we have to offer you” and “are we the right fit for you.” While every position is different, our interview process is typically a three-step process, sometimes more depending on the level and nature of the role.

What We Offer You

• 18 days of personal time off per year + 13 holidays (that is 31 paid days off year!) plus reduced summer work hours (every other Friday off during the off-season, which averages to another 8-10 days annually)
• A hybrid work model, casual work attire on non-game days, staff tickets to Magic home games, learning and development opportunities, Employee Resource Groups (ERGs), company sponsored events, volunteer opportunities & outings for every employee
• Fantastic benefits that include: medical, dental, vision, 401(k) with company matching, mental wellness resources, subsidized gym memberships, maternity & paternity leave
• Culture built on Community, Innovation, Legendary and Teamwork!
  
  

A Quick Summary About The Cybersecurity Analyst Role

The Cybersecurity Analyst serves as the primary point of contact for triaging security events, ensuring swift identification, analysis, and escalation of potential threats. This role is responsible for recommending and implementing security system upgrades, updates, and configuration reviews to maintain a strong security posture. You will oversee cybersecurity training initiatives, enhancing awareness and best practices across the organization.

Additionally, you will review and coordinate patching efforts to mitigate vulnerabilities, participate in tabletop exercises, and will also be involved in managing compliance with NBA cybersecurity audits, ensuring adherence to industry standards and regulations.

What The Cybersecurity Analyst Will Do

• Proactively monitor security alerts, analyze incidents, and escalate threats when necessary. Act as the primary point of contact for security event triage, ensuring timely investigation and response.
• Analyze security breaches, coordinate response efforts, follow the internal Incident Response Playbook, and implement corrective measures to prevent recurrence.
• Review and suggest ways to optimize security tools such as firewalls, SIEM, IDS/IPS, EDR, and antivirus solutions.
• Identify, assess, and support the remediation of security vulnerabilities to minimize risks.
• Oversee and manage patching processes to ensure timely updates, system security, and regulatory compliance.
• Ensure adherence to security policies, industry best practices, and regulatory requirements (e.g., Cybersecurity audits, NIST, etc.).
• Design and deliver security training programs to strengthen employee awareness and reduce human-related risks. Lead cybersecurity education initiatives to promote best practices across the organization.
• Participate in security drills to improve incident response preparedness and business continuity planning.
• Review user permissions, multi-factor authentication (MFA), role-based access control (RBAC), and privileged access management (PAM) to ensure secure access to critical systems and data.
• Maintain detailed records of security incidents, risk assessments, and compliance reports for audits and management review.
• Work closely with IT and business teams to refine security policies and implement best practices.
• All other duties as assigned.
  
  

What The Cybersecurity Analyst Needs To Have

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• 2–4 years of experience in Cybersecurity, security operations, or IT security roles is required.
• Experience in security event monitoring, incident response, and vulnerability management is required.
• Familiarity with Cybersecurity audits, industry security frameworks (NIST), and compliance standards is required.
• Proficiency in SIEM, EDR, IDS/IPS, firewalls, and other security monitoring tools is required.
• Knowledge of threat detection, forensic analysis, and incident response is required.
• Experience with patch management, system hardening, and security configuration reviews is required.
• Understanding of network security protocols, authentication mechanisms, and encryption standards is required.
• Familiarity with cloud security principles (AWS, Azure, or Google Cloud) is required.
• Strong analytical and problem-solving skills with attention to detail.
• Effective communication and presentation skills for cybersecurity training and awareness programs.
• Ability to work collaboratively with IT teams, business units, and senior leadership.
• Ability to work all Magic home games plus a select number of non-Magic events. This includes the ability to work a flexible schedule including nights and weekends and be on-call as necessary based on the changing priorities of the department.
• Proficient in all Microsoft Office products and other related computer skills required.
• Strong organizational skills, time management skills and attention to detail required.
• Strong verbal and written communication skills with an emphasis on business writing skills.
• Ability to prioritize and manage multiple tasks/projects.
  
  

Certifications (Preferred But Not Required)

• CompTIA Security+
• ISC2 Certified in Cybersecurity
• Certified Ethical Hacker (CEH)
• Microsoft SC-900
• AWS Security
• Or other security certifications.
  
  

Physical Requirements

• In some cases, the Cybersecurity Analyst may need to visit a server room or data center, requiring standing, walking, or working in temperature-controlled environments.
• Occasionally lifting and relocating computer equipment, typically weighing between 10 and 50 lbs.
• Sitting for extended periods might be required.
  
  

If this opportunity is a role you're passionate about and it fits with your skills and experience, then we welcome you to take the next step and apply!

All offers of employment are contingent on successful completion of our pre-employment screenings, that will include a background check and may include a drug screen.

Please note that this is not necessarily an exhaustive list of all responsibilities, duties, skills, efforts, requirements or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the job or to require that other or different tasks be performed as assigned.

The Orlando Magic are not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at the Orlando Magic via-email, the internet or in any form and/or method without a valid written Statement of Work in place for this position from Orlando Magic HR/Recruitment will be deemed the sole property of the Orlando Magic. No fee will be paid in the event the candidate is hired by the Orlando Magic as a result of the referral or through other means.

The Orlando Magic is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived race, religion, color, sex (including pregnancy and gender identity), sexual orientation, parental status, national origin, age, disability, family medical history or genetic information, political affiliation, military service, any other non-merit based factor or any other characteristic protected by applicable federal, state or local laws. Our leadership team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities and general treatment during employment. If you’d like more information about your EEO rights as an applicant under the law, please visit http://www1.eeoc.gov/employers/poster.cfm