Okay, I've searched for Cyber Security Analyst roles that are fully remote within the U.S., requiring 5+ years of experience in information security, with expertise in Microsoft 365 administration and compliance frameworks, and offering full-time schedules. I have found 147 positions matching your criteria.

Sure. Here's the analysis:

Job Analysis:

The Cyber Security Analyst role at Susan G. Komen is fundamentally about safeguarding the organization's IT ecosystem against evolving cyber threats while maintaining compliance with strict regulatory frameworks like HIPAA and PCI. The position demands not only technical proficiency with Microsoft-centric security tools—such as Sentinel, Defender, Intune, and the broader Microsoft 365 suite—but also a strategic mindset to develop policies, monitor vulnerabilities, and respond swiftly to incidents. The candidate will operate at the nexus of technical threat detection and cross-departmental collaboration, requiring effective communication to translate complex cyber risks into actionable insights for non-technical colleagues. Autonomy and initiative are critical, given the distributed, fully remote work environment and the need to proactively identify and remediate risks amid ambiguity. Success includes not only maintaining robust security defenses and compliance posture but also driving continuous improvement through automation, user awareness initiatives, and data-driven KPIs. The analyst must be agile in managing multiple projects, vendor assessments, and incident responses, demonstrating resilience and adaptability in a mission-driven nonprofit context.

Company Analysis:

Susan G. Komen, as a globally recognized nonprofit focused on eradicating breast cancer, operates with a deeply mission-driven and collaborative culture. Its long-standing position as a leader in cancer advocacy and research funding situates this role within an impactful organization where cybersecurity is essential to protect sensitive health data and ensure ongoing trust. The company fosters a remote-first, growth-oriented environment that values continuous learning, open communication, and teamwork across all levels, emphasizing inclusivity and diversity. This culture suggests that the Cyber Security Analyst must be both a self-starter and a collaborative partner, comfortable navigating a flattened hierarchy with visibility potentially extending to senior IT and operational stakeholders. Strategically, this role underpins the organization’s commitment to secure digital infrastructure, enabling Komen to focus on innovation and outreach. For a candidate, understanding and aligning with the company’s mission-driven ethos and its balance of technical rigor with a human-centered approach will be key to flourishing and contributing meaningfully over the long term.

Absolutely. Here are some mock interview questions that could come up:

• Behavioral: Tell me about a time when you identified a critical vulnerability in an IT system. How did you prioritize remediation and communicate the risk to stakeholders?
• Behavioral: Describe an instance where you had to work remotely or independently to resolve a security incident. How did you maintain communication and ensure an effective response?
• Behavioral: Can you share an experience where you collaborated with cross-functional teams to implement a security initiative? What challenges did you face, and how did you overcome them?
• Behavioral: Give an example of how you managed compliance requirements for HIPAA or PCI within a previous role. How did you balance regulatory demands with operational effectiveness?
• Technical: How do you approach configuring and optimizing SIEM platforms like Microsoft Sentinel to improve threat detection and reduce false positives?
• Technical: Walk me through your experience with vulnerability management tools and how you prioritize remediation tasks in a complex environment.
• Technical: What strategies have you used to harden Microsoft 365 environments, including Exchange Online and SharePoint Online, against common attack vectors?
• Technical: Explain how you would utilize automation and scripting to streamline incident triage and security operations workflows.
• Situational: Imagine you detect suspicious activity on the network indicative of a potential breach. What are your immediate steps in investigation and containment?
• Situational: If a critical security patch conflicts with existing systems causing downtime, how would you balance risk and operational continuity while addressing the issue?
• Situational: How would you handle a situation where non-technical staff repeatedly fall victim to phishing attacks despite training efforts?
• Company Fit: Why are you motivated to work for Susan G. Komen, and how do you see your role contributing to our mission beyond IT security?
• Company Fit: How do your personal values align with our organization's commitment to diversity, inclusion, and collaboration?
• Company Fit: Given our fully remote work environment and team culture, how do you ensure productivity, communication, and engagement?
• Questions for Interviewer: Can you describe how the IT and security teams collaborate with other departments to support broader organizational goals?
• Questions for Interviewer: What are the biggest cybersecurity challenges Susan G. Komen expects to face in the next 12-18 months?
• Questions for Interviewer: How does the company support continuous training and professional development for cybersecurity staff?