Cyber Security Analyst

About The Position

Requirements

• High School Diploma or GED and six (6) years of related post-secondary education and/or experience in Information Security or Information Technology
• Minimum of two (2) relevant certifications in Information Security or the ability to obtain relevant certifications within twelve months of start date in this position, such as CompTIA Network+/Security+/CySA+, EC-Council Certified Ethical Hacker (CEH), Cisco CCNA/CCNA-Security, GIAC GSEC, CDSA, etc.
• Willingness and availability to work on a pre-determined shift and rotational on call
• Ability to be a self-starter with initiative and drive for continuous improvement.
• Ability to be a team-oriented individual who works well with others and places a premium on the group’s success
• Demonstrated strong organizational, research, analytical and problem-solving skills to evaluate situations and respond appropriately
• Excellent writing and verbal communication skills
• Familiarity with concepts related to security disciplines such as: malware analysis, computer forensics, cyber incident response, network intrusion detection, network traffic and packet analysis, penetration testing, vulnerability scanning, compliance, audit, or cyber threat intelligence
• Strong understanding of information security principles, controls, and technologies
• Strong investigative and problem-solving skills

Nice To Haves

• One (1) Intermediate to Advanced Amazon Web Services (AWS) or Azure Architect/Administrator and/or Security specialty certification
• Experience in a Security Operations Center (SOC) environment
• Experience performing security analysis using Security and Incident Event Management (SIEM) systems
• Understanding of MITRE ATT&CK Framework and Cyberattack Kill Chain and how these frameworks can be used to identify gaps as well as orient analysts in attack progression.
• Professional certifications related to cloud technologies or artificial intelligence (e.g., AWS, Azure, GCP, or AI-focused security certifications) are strongly preferred.

Responsibilities

• Analyze and respond to cyber threats within various security tools according to documented procedures.
• Collaborates with various stakeholders within Cyber Security/Technology departments and standard owners to properly document and communicate security risks
• Proactively supports a feedback loop related to information and events in order to identify and support the remediation of improving precision and accuracy of analysis.
• Review and understand Policies, Standards, and Procedures for improved process flows.
• Supports threat hunting, participate in tabletop exercises, and assist in Incident Response on a rotational job-duty basis as needed
• Maintains meticulous records of all work performed, including root cause analysis, indicators of compromise, remediation steps, timeline of events, and impact assessment using clear and concise annotations as needed
• Stays abreast of global cybersecurity threat trends
• Supports and collaborates with various cybersecurity teams to document security posture and assess environment for relevant IOCs and gaps
• Participates in and ensures proper documentation of various security assessments (i.e. Security Architecture Reviews, Red Team assessments, Purple Team engagements, and formal tabletop exercises) as needed
• Assists with analyzing software for violations in Regions Cyber Security standards as needed
• Serves as an escalation point, mentor, and trainer for junior analysts
• May participate in specials projects

Benefits

• Paid Vacation/Sick Time
• 401K with Company Match
• Medical, Dental and Vision Benefits
• Disability Benefits
• Health Savings Account
• Flexible Spending Account
• Life Insurance
• Parental Leave
• Employee Assistance Program
• Associate Volunteer Program