Junior Cyber Security Analyst

The Cyber Data Defense team at Bayer is seeking a Junior Investigations Analyst to join their security team. This role supports insider risk investigations under the Insider Risk Management Service, focusing on triaging, analyzing, and documenting insider risk-related indicators. The analyst collaborates with senior investigators and various internal teams to support fact-based assessments of potential insider risk scenarios.

• Bachelor’s degree in cybersecurity, information security, computer science, or a related field or equivalent practical/professional experience.
• Exposure to monitoring or analysis tools such as SIEM platforms, DLP solutions, or endpoint security tooling; Microsoft Purview with Insider Risk Management (IRM) is preferred.
• Familiarity with cybersecurity concepts such as logging, alerts, access controls, and data protection.
• Ability to produce clear, factual, and well-structured documentation suitable for audit and governance review.
• Demonstrated analytical thinking skills and attention to detail, with the ability to assess information, identify patterns or inconsistencies, and draw fact-based conclusions.
• Strong written and verbal communication skills, with the ability to clearly explain technical information and investigative findings to both technical and non-technical audiences.
• Ability to work effectively as part of a team, managing tasks and priorities in a collaborative and fast-paced environment.
• Sound professional judgment and ethical mindset when handling sensitive or confidential information.

• Perform initial triage and analysis of insider risk-related alerts, cases, or referrals in accordance with approved procedures and playbooks.
• Collect, preserve, and review relevant technical evidence (e.g., logs, alerts, system artifacts).
• Apply established investigative techniques to identify risk indicators, patterns, or anomalies related to potential data misuse or policy violations.
• Clearly document investigative findings in case management systems using standardized, audit-ready language.
• Collaborate with senior investigators, service owners, and Cyber Defense teams to support ongoing investigations and follow-ups.
• Support coordination with Legal, Data Privacy, Corporate Global Security, and other governance stakeholders by contributing accurate and timely technical inputs.
• Follow security, privacy, and evidence-handling standards to ensure defensible and compliant investigation support.
• Contribute to continuous improvement by identifying gaps and improvement opportunities in investigation playbooks and workflows.
• Build foundational competency in insider risk concepts, investigation methodologies, and relevant cyber defense tools.
• Stay informed on basic cybersecurity threats, data protection risks, and insider risk use cases relevant to the service.