Homexpress Mortgage Corp Logo

Homexpress Mortgage Corp

Cybersecurity Analyst

Posted 2 Days Ago
Be an Early Applicant
In-Office
Santa Ana, CA, USA
130K-150K Annually
Mid level
In-Office
Santa Ana, CA, USA
130K-150K Annually
Mid level
Operate day-to-day security operations in a cloud-first environment: monitor and triage SIEM alerts, perform incident response, build detection rules, manage vulnerability remediation, run penetration testing programs, manage email security and phishing simulations, support DLP and access reviews, produce leadership reports, maintain documentation, and support audits and regulatory requests.
The summary above was generated by AI
Company Description

HomeXpress – Your Leading Non-QM Mortgage Lender.

Join our growing team and be part of the Top Non-QM Lender in the Business.

We are known for closing mortgage loans with speed, ease, and convenience.

Licensed in 46 States, we provide brokers with a full suite of mortgage products, including VA, FHA, & FHLMC.

If you have a service first mentality and thrive in a fast-paced environment, HomeXpress is the place for you.

Join us as we continue to grow and expand our business to the Non-Delegated Correspondent Channel!

Job Description

 

Job Title:              Cybersecurity Analyst

Department:      Information Technology

Reports To:         VP, Cyber Security and Infrastructure

FLSA Status:        Exempt

Management:   No

Salary Range:    $130,000 - $150,000/yr

 

PRIMARY FUNCTIONS:

HomeXpress Mortgage is hiring a Cybersecurity Analyst to support day to day security operations in a cloud-first environment. On-site in Santa Ana with hybrid flexibility. Not a remote position. This role owns vulnerability management, security monitoring, email defense, and internal security testing. You will work directly with the VP of Cybersecurity and Infrastructure in a regulated lending environment.

This is a hands-on operational role. We are looking for someone reliable, detail-driven, and accountable, who takes ownership of recurring work and escalates early when something is off.

 

ESSENTIAL DUTIES AND RESPONSIBILITIES:

  • Monitor and triage alerts in our SIEM and respond within defined SLAs
  • Participate in incident response, including containment, investigation, and post-incident reporting
  • Build and tune detection rules and use cases to reduce false positives
  • Own vulnerability management across endpoint, cloud, and automated testing sources, tracking remediation to closure
  • Run the internal and external penetration testing program on schedule and report findings
  • Manage email security tooling and confirm malicious senders are blocked
  • Investigate user-reported phishing and take corrective action
  • Operate security awareness phishing simulations
  • Support data loss prevention and data security posture monitoring
  • Support periodic user access reviews and certifications
  • Produce clear daily and weekly findings summaries for leadership
  • Maintain documentation and support audit and regulatory requests

 

 

DESIRED PERSONAL CHARACTERISTICS:

  • Meticulous and committed to the highest quality.
  • Initiative-taker with positive Can-Do attitude.
  • Works well under pressure and relishes the responsibility that comes with the job.
  • Problem solving and analysis.
  • Communication proficiency.
  • An open-minded individual that embraces change and innovation.
  • Team and Project leadership/management experience.
  • Excellent written and verbal communications skills.
  • Possess the knowledge, skills, and ability to operate an advanced cyber analytical toolkit and perform required assessments.
  • Possess expert knowledge of IT and network systems – both on-prem and SaaS.
  • Experience with firewalls and network technologies.
  • Experience installing, configuring, administering software applications.
  • Demonstrated skills in troubleshooting problems with software and hardware.
  • Experience configuring, managing, and maintaining networking equipment.
  • Experience in Vulnerability Alert processes.

 

JOB REQUIREMENTS:

  • 4+ years in a security operations or analyst role
  • Hands-on experience with a SIEM platform
  • Working knowledge of vulnerability management and remediation tracking
  • Familiarity with cloud identity and Microsoft 365 security tooling
  • Strong written communication and consistent follow-through on recurring tasks
  • Ability to work independently and escalate appropriately

 

EDUCATION:

  • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field, or equivalent work experience.

 

EXPERIENCE:

  • Experience in a regulated industry, financial services or mortgage a plus
  • Familiarity with email security, DLP, DSPM, or penetration testing tools

 

PHYSICAL REQUIREMENTS:

  • This position is in an office setting with computer and general office equipment. The position requires the ability to move freely around within the department and other department locations.

Additional Information

All your information will be kept confidential according to EEO guidelines.

HQ

Homexpress Mortgage Corp Santa Ana, California, USA Office

1936 E. Deere Ave., Suite 205, Santa Ana, CA, United States, 92705

Homexpress Mortgage Corp Tustin, California, USA Office

15641 Red Hill Ave, Tustin, United States, 92780

Similar Jobs

Yesterday
In-Office
89K-100K Annually
Junior
89K-100K Annually
Junior
Aerospace
Entry-level cybersecurity analyst supporting DoD RMF A&A tasks: develop SSPs and POA&Ms, perform vulnerability assessments, incident response, security impact analyses, and documentation in eMASS. Coordinate with ISSM/ISSOs, SAs, PMs, and engineers to ensure DoD cybersecurity policies and controls are applied across system lifecycles.
Top Skills: AcasDodi 8510.01EmassLanNist Sp 800-53RmfScapStigWan
Yesterday
In-Office
100K-116K Annually
Mid level
100K-116K Annually
Mid level
Aerospace
Provide intermediate cybersecurity engineering and support for DoD test-range systems: perform RMF A&A (NIST SP 800-53), develop SSPs and POA&Ms in eMASS, conduct vulnerability assessments, incident response, change control, and risk mitigation. Interface with ISSM/ISSO/PMs, document security posture, and support compliance, testing, and discussion-based exercises to ensure systems meet DoW cybersecurity policies.
Top Skills: AcasCcna SecurityCehCndCysa+Dodi 8510.01EmassGicspGsecLanNist Sp 800-53RmfScapSecurity+SscpStigWan
Yesterday
In-Office
Entry level
Entry level
Aerospace • Logistics • Security • Software • Cybersecurity
Support information system lifecycle activities for classified systems including audits, continuous monitoring, RMF Assessment & Authorization (A&A) support, ST&E participation, security documentation, risk analysis, and implementation of government security policy and safeguards.
Top Skills: AcasDaagJsigNessusNistPoa&MsRmfScapSctmsSecurity+ CeSplunkSspsTrellix

What you need to know about the Los Angeles Tech Scene

Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.

Key Facts About Los Angeles Tech

  • Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
  • Key Industries: Artificial intelligence, adtech, media, software, game development
  • Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
  • Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account