Cybersecurity Analyst (Security and AI Governance)
District of Columbia, United States · Full Time
Be the first to apply
- Experience
- 2–5 yrs
- Salary
- USD 100,000 – USD 120,000 / year
- Openings
- 1
- Posted
- 2 weeks ago
- Work mode
- In office
- Education
- Associate's or Bachelor's degree
- Eligibility
- Candidates with an Associate’s or Bachelor’s degree in a relevant technical field and 2–5 years of experience in cybersecurity or a closely related area are eligible. Applicants should be able to work in-office, with no recruiters.
- Resume
- Required to apply
Where you'll work
Job description
Company Overview
Cogent Communications is a global, Tier 1, facilities-based ISP and is regularly recognized among the world’s leading networks. The company is publicly listed on NASDAQ under the ticker CCOI. It provides high-speed internet access and Ethernet transport services for businesses through an all-optical IP backbone with global reach. Since its founding, Cogent has expanded a large, high-capacity IP network that delivers bandwidth at competitive pricing, along with customer support backed by direct control over service delivery and network monitoring.
Role Summary
The Cybersecurity Analyst focused on Security and AI Governance helps safeguard the company’s information, infrastructure, applications, cloud environments, data, and AI initiatives from cyber risk and misuse. The role contributes to both security operations and AI governance by identifying, evaluating, tracking, and reducing threats tied to information systems and AI-enabled technologies.
This position partners with IT, software development, internal business teams, and external collaborators to make sure cybersecurity and AI efforts stay aligned with internal policy, industry expectations, legal and regulatory obligations, and evolving AI governance practices. The analyst works closely with CIO and CISO functions to support cybersecurity planning, AI governance, shadow AI oversight, risk reduction, and continuous improvement.
Compensation
The starting base pay range for this role is USD 100,000 to USD 120,000 per year. Final offers within that range depend on factors such as experience, education, skill set, certifications, and business requirements.
Key Responsibilities
- Track activity across security tooling, networks, applications, cloud services, and AI-enabled platforms to identify suspicious behavior and possible threats.
- Review security alerts, investigate incidents, identify likely root causes, and determine the right corrective actions.
- Assist with incident response tasks such as containment, removal of threats, restoration, and lessons-learned analysis.
- Carry out vulnerability reviews and work with technical and business teams to drive remediation.
- Examine security logs from firewalls, IDS/IPS tools, endpoint protection systems, cloud environments, identity platforms, AI systems, and related technologies.
- Perform security and risk assessments for systems, applications, AI tools, and business workflows.
- Help create, roll out, and improve cybersecurity and AI governance policies, standards, procedures, and controls.
- Work with IT, developers, and business units to embed security-by-design practices and other protective controls into technology solutions.
- Take part in reviewing internally built AI tools, machine learning models, and employee-led AI use cases from a risk and governance perspective.
- Evaluate third-party AI products, vendors, and services for security, privacy, compliance, data handling, and operational concerns.
- Identify and monitor risks related to generative AI, LLMs, machine learning platforms, prompt injection, data leakage, insecure APIs, and AI supply chain exposure.
- Help build and run the organization’s AI governance program and shadow AI oversight process.
- Support secure development methods for internally developed software, AI-enabled solutions, and new technology initiatives.
- Maintain, tune, and improve security tools so they continue to perform effectively.
- Participate in employee security awareness and AI awareness training.
- Support audits, compliance reviews, AI governance assessments, and regulatory reporting.
- Research new cyber threats, vulnerabilities, security trends, AI developments, and industry practices, then recommend practical countermeasures.
- Keep updated records of approved AI solutions, AI vendors, and AI-related business activities.
- Create and maintain dashboards, reports, metrics, risk documentation, and records tied to security operations, AI governance, compliance, and enterprise risk management.
Qualifications
- An Associate’s or Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Data Science, or a related field.
- 2 to 5 years of experience in cybersecurity, information security, application security, cloud security, software development, or another related technical area.
- Practical experience with security monitoring, incident response, vulnerability management, risk analysis, and security control implementation.
- Working familiarity with generative AI, machine learning concepts, large language models, or AI-enabled business applications.
- Strong hands-on information security experience.
- Ability to work independently on assigned work.
- Strong communication, presentation, and organizational abilities.
- Excellent analytical thinking and problem-solving skills.
Preferred Knowledge and Experience
- Understanding of cybersecurity frameworks and standards such as CIS Controls, the NIST Cybersecurity Framework, and general security best practices.
- Awareness of AI governance principles and emerging AI risk management frameworks.
- Knowledge of network security, endpoint protection, identity and access management, threat detection, and cloud security fundamentals.
- Understanding of application security, API security, and secure software development methods.
- Awareness of the risks associated with generative AI platforms, LLMs, prompt injection, privacy exposure, and AI model security.
- Ability to work independently and with others in a fast-moving environment.
- Ability to prepare and deliver formal documentation, risk assessments, and executive-level reports.
- Experience with SIEM and security monitoring platforms is an advantage.
- Experience with cloud platforms such as Azure, AWS, or Google Cloud is an advantage.
- Experience using scripting or automation tools like Python or PowerShell is an advantage.
- Experience supporting software development, DevSecOps, or application security work is an advantage.
Preferred Certifications
- CISSP
- CEH
- CompTIA Security+
- GSEC
- Other relevant certifications in AI security, cloud security, application security, or governance are highly valued.
Physical Requirements
- The role is largely desk-based and involves remaining seated or stationary for most of the workday.
- It requires regular computer use, including frequent screen time.
- Occasional lifting, carrying, pushing, or pulling of objects or equipment up to 50 pounds may be required.
Additional Information
This job description reflects the overall nature and level of work expected and is not a complete list of every duty, responsibility, or qualification.
This is an in-office position.
Cogent Communications is an Equal Opportunity Employer.
To submit an application, send a resume and cover letter to careers@cogentco.com.
Candidates only. No recruiters, please.
Benefits
The role comes with a competitive base salary and a comprehensive benefits package that includes health, dental, vision, paid time off, short-term disability, long-term disability, life insurance, holidays, parental leave, a 401(k) plan with employer match, stock options, and an Employee Assistance Program. Most benefits begin within 30 days of employment, while some are subject to a waiting period.