United States onlyThis is an entry-level position expected to begin Summer 2026, and is fully-remote from any U.S. location. Travel 1-2 times per year may be required. This is a non-exempt position.
The Associate Cyber Security Analyst supports the day‑to‑day operation of ICF’s information security program under the guidance of senior security staff and the Cyber Security Manager. This role assists with monitoring, maintaining, and documenting security controls and technologies, including endpoint protection, access controls, vulnerability management, and security event monitoring.
Working closely with experienced analysts and internal stakeholders, the Associate Cyber Security Analyst helps identify, document, and escalate security issues, supports routine security operations, and contributes to security assessments and reporting. The role provides hands‑on exposure to and guidance with incident response, compliance activities, and security tooling while developing technical and professional cybersecurity skills in a structured, supportive environment.
The Associate Cyber Security Analyst supports routine security operations, including security monitoring, service requests, evidence gathering, and incident response support, while collaborating with IT, compliance, and other security stakeholders. The role contributes to security awareness, risk remediation, and ongoing security improvement efforts while continuing to develop technical and professional security skills.
Performance Objectives:
Technical Work
Detail‑oriented with a strong analytical mindset and a willingness to learn
Ability to clearly document work and communicate effectively in writing and verbally
Collaborate with technical and business stakeholders to support vulnerability remediation and security event response
Learn, follow, and document common security processes under guidance from senior team members
Assist with security request and incident ticket intake, triage, and escalation
Support the collection and creation of artifacts for audit and compliance activities
Analyze security log data to identify emerging or unusual patterns
Review and help validate vulnerability findings using established processes
Assist with the operation of infrastructure and application vulnerability scanning tools
Research and test emerging threats, vulnerabilities, and security techniques
Working knowledge of Windows, macOS, and/or Linux operating systems
Foundational understanding of networking concepts, including the OSI model, TCP/IP, routing, and switching
Familiarity with scripting or query languages such as PowerShell, Python, Java, or SQL
Assist in modifying or proposing security alerts for events of interest
Participate in on‑call rotations as part of a team, with guidance and escalation support
Assist with disaster recovery and incident response testing and exercises
Basic Qualifications:
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field or equivalent practical experience
Preferred Qualifications:
1–2 years of general technology experience (including internships, academic projects, or relevant hands‑on work)
Foundational knowledge of information security principles, common security practices, and log monitoring/analysis concepts
Familiarity with cloud platforms (Azure and/or AWS) and common security tools through coursework, labs, or hands‑on experience (e.g., vulnerability scanners, network analysis tools, penetration testing frameworks)
Exposure to security monitoring and incident response fundamentals, including network traffic analysis
Basic scripting or automation experience (e.g., simple scripts or academic projects)
Awareness of emerging technologies, including the use of generative or agentic AI in security contexts
Strong interest in learning and developing cybersecurity skills
Ability to manage multiple tasks, adapt to changing priorities, and operate effectively in time‑sensitive situations
Demonstrated professionalism and discretion in handling sensitive information
Flexibility to support extended hours or incident response activities, as needed
Entry‑level cybersecurity certifications (e.g., CompTIA Security+ or equivalent) a plus
Scope
Learns and applies foundational professional and cybersecurity concepts while following established company policies and procedures. Performs structured, well‑defined assignments to resolve routine issues, with work reviewed by senior team members as part of ongoing skill and competency development.
Complexity
Works on problems of limited scope by following established practices and procedures to analyze routine situations or data where solutions are well defined. Builds stable, collaborative working relationships within the organization while escalating more complex issues as appropriate.
Discretion
Work is initially closely managed, with detailed guidance and oversight provided for assigned tasks. As proficiency and confidence develop, the role is expected to exercise increasing independence in handling routine work.
Interaction
Regularly interacts with functional peers within the immediate organization. Interaction normally involves exchange or presentation of factual information. Limited interaction with external contacts.
Working at ICF
ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future.We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer.Together, our employees are empowered to share theirexpertiseand collaborate with others to achieve personal and professional goals. For more information, please read our EEOpolicy.
We will consider for employment qualified applicants with arrest and conviction records.
Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals withsincerely heldreligious beliefs, in all phases of the application and employment process. To requestan accommodation,please email Candidateaccommodation@icf.com and we will be happy toassist. All information you provide will be kept confidential and will be used only to the extentrequiredto provide needed reasonable accommodations.
Read more about workplace discrimination rightsor our benefit offerings which are included in the Transparency in (Benefits) CoverageAct.
Candidate AI Usage Policy
At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate orassistwith responses during interviews (whether in-person or virtual) is notpermitted. This policy is in place tomaintainthe integrity and authenticity of the interview process.
However, we understand that some candidates may require accommodation that involves the use of AI. Ifsuch anaccommodation is needed, candidates are instructed to contact us in advance at candidateaccommodation@icf.com. Weare dedicated to providingthe necessary support to ensure that all candidates have an equal opportunity to succeed.
Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position.
The pay range for this position based on full-time employment is:
$61,232.00 - $104,094.00Nationwide Remote Office (US99)