Associate Security Analyst

Hornblower Group is a global leader in experience and transportation. Spanning a 100-year history, Hornblower Group’s portfolio of international offerings includes water- and land-based experiences and ferry and transportation services. City Experiences, Hornblower Group’s premier experience division, offers dining and sightseeing cruises and walking and food tours through the City Cruises, Walks, and Devour brands. City Ferry, part of Hornblower Group’s Ferry and Transportation Division, is the largest private operator of high-speed passenger and vehicle ferries in the United States, carrying more than 10 million passengers annually and operating services including NYC Ferry, Puerto Rico Ferry, and other regional ferry systems. Hornblower Group’s subsidiaries include Hornblower Marine, which provides vessel outhaul and maintenance services at Bridgeport Boatworks in Bridgeport, Connecticut, and Seaward Services, Inc., a full-service shipping, waterfront logistics and management company that specializes in the operation and maintenance of government and commercial vessels. Additionally, Anchor Operating System, LLC, a Hornblower Group subsidiary and independent entity, provides reservation, ticketing and website integration services for clients in the transportation, tourism and entertainment industries. Today, Hornblower Group’s global portfolio covers over 10 countries, over 50 U.S. cities and serves more than 20 million guests annually. Headquartered in Orlando, Florida, Hornblower Group’s additional corporate offices reside in San Francisco, California; Boston, Massachusetts; Chicago, Illinois; London, United Kingdom; New York, New York; Dublin, Ireland; and across Ontario, Canada. For more information, visit hornblowercorp.com. Position Summary: Cybersecurity at Hornblower is responsible for protecting the business. We do so by establishing, maintaining and enforcing policies to meet and exceed industry standards for security and compliance. We are seeking a motivated Junior Security Analyst to join our information security team. In this role, you will help defend our organization against cyber threats by monitoring security tools, investigating alerts, and supporting incident response efforts. This is an excellent opportunity for an early-career professional to develop hands-on experience across a broad range of security disciplines while working alongside experienced practitioners. Responsibilities: Monitor security information and event management (SIEM) platforms, intrusion detection systems, and other security tools for suspicious activity. Triage and investigate security alerts, escalating confirmed incidents to senior analysts according to established playbooks. Assist in incident response activities, including evidence collection, containment, and post-incident documentation. Conduct regular vulnerability scans and help track remediation efforts with system owners. Review logs from firewalls, endpoint protection, identity providers, and cloud platforms to identify anomalies. Support phishing investigations, including analysis of suspicious emails, URLs, and attachments in a sandboxed environment. Contributes to the maintenance of security documentation, runbooks, and knowledge base articles. Assist with user access reviews, security awareness initiatives, and routine compliance tasks. Stay current on emerging threats, vulnerabilities, and attacker techniques, sharing relevant findings with the team. Requirements: Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field — or equivalent practical experience (internships, home labs, military, or self-directed study). Foundational understanding of networking concepts (TCP/IP, DNS, HTTP/S, VPNs) and common operating systems (Windows and Linux). Familiarity with core security concepts: the CIA triad, common attack types (phishing, malware, brute force, privilege escalation), and basic defensive controls. Hands-on exposure to SIEM platforms (Microsoft Sentinel, Elastic, etc.), EDR tools, or vulnerability scanners. Basic scripting ability in Python, PowerShell, or Bash for log parsing or task automation. Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, or the Cyber Kill Chain. Experience with cloud environments (AWS, Azure, or Google Cloud) and their native security services Strong analytical and problem-solving skills, with attention to detail. Clear written and verbal communication, including the ability to document findings for both technical and non-technical audiences. Eagerness to learn and a methodical, curious approach to investigation. The RESPECT Service System embodies our mission, vision, values and operating principles. By creating a company culture that puts RESPECT at its core, we believe it will drive us to achieve our goal of becoming a Global Experiences and Transportation Leader. EEO / Disabled / Protected Veteran Employer. Hornblower is proud to be an Equal Employment Opportunity employer. We offer equal employment opportunities to all qualified individuals and prohibit discrimination and/or harassment of any type, including but not limited to discrimination and or harassment based upon race, religion, religious creed, color, national origin, ancestry, citizenship, sex, sexual orientation, gender, gender identity, gender expression, age, pregnancy or relation medical conditions, childbirth, breastfeeding, parental status, veteran and/or military status, disability (physical or mental), medical condition, genetic information or characteristics, political affiliation, domestic violence survivor status, marital status, or other characteristics prohibited by federal, state, or local law. Additionally, as a federal, state, and local contractor, Hornblower complies with government regulations, including affirmative action responsibilities for qualified individuals, where and as they apply. The company also participates in the E-Verify program in certain locations. Apply To This Job