Cyber Security Analyst

About The Position

Requirements

• Associate degree in Computer Science, Information Security, or a related field; or an equivalent combination of relevant education and professional experience.
• Minimum of 3 years of hands-on experience in Security Operations (SecOps) including but not limited to incident response, Endpoint Detection and Response (EDR), endpoint security, compliance, risk management, and related functions.
• Strong understanding of network concepts, including TCP/IP, routing, etc.
• Extensive experience with security functions including firewalls, Intrusion Detection/Prevention Systems (IDS/IPS), email security, endpoint security, Security Information and Event Management (SIEM), EDR, vulnerability scanning, etc.
• Familiarity with NIST Cybersecurity Framework (CSF) and other industry-standard security controls and guidelines for incident response.
• Proven ability to collaborate effectively with business stakeholders, build trust, and maintain productive relationships with third-party vendors and partners.
• Strong problem-solving skills and the ability to work effectively under pressure during critical and time-sensitive situations.

Nice To Haves

• Industry standard information security certifications such as CompTIA Security+, Network+, or similar credentials highly preferred.

Responsibilities

• Collaborate with internal auditors to address and remediate audit findings, ensuring compliance and risk mitigation.
• Work closely with external auditors to implement necessary security controls based on audit recommendations and findings.
• Apply expertise in TISAX Audit requirements to ensure compliance and security standards are met.
• Review, create, and document standard operating procedures for security processes and practices.
• Conduct regular user access reviews and governance assessments to ensure proper compliance with security policies.
• Manage the TPRM (Third Party Risk Management) tool to assess and mitigate risks.
• Serve as a subject matter expert on Privileged Access Management (PAM) technology and solutions, providing guidance on best practices and implementation.
• Perform risk assessments and gap analyses to identify vulnerabilities and recommend appropriate corrective actions.
• Act as a point of contact for assigned security vendors providing managed services, ensuring effective communication and timely resolution of escalated issues.
• Deploy and implement security tools to safeguard company assets and enhance security posture.
• Regularly review logs to detect anomalies or potential security threats that could lead to security breaches.
• Leverage automation tools and technologies to optimize workflows, improve operational efficiency, and enhance productivity in security operations.
• Coordinate special projects as assigned by management.
• Follow incident response procedures.
• Maintain flexibility in schedule to provide backup coverage.
• Cross-train with and provide support for other IT associates.
• Perform general housekeeping duties.
• Adhere to all company policies and procedures, which include IATF, ISO, ISMS, TISAX, QMS, and Safety related policies.

Benefits

• Medical, dental, vision, and life insurance.
• Short-term and long-term disability coverage.
• 401(k) plan with a generous company match of up to 6%.
• Generous paid time off, including vacation, sick leave, and holidays.
• Paid maternity and paternity leave.