Cybersecurity Analyst (37.25)

About The Position

Requirements

• High School Diploma or equivalent.
• Minimum of three years' experience in information technology, information technology security or cyber security related fields is required.
• At least one year of cyber security incident collection, analysis, and reporting process procedures desired.
• Hands-on experience in supporting and maintaining information technology and cyber security tools and technologies desired.
• Security + and/or Network+ certification desired.

Nice To Haves

• Scripting experience (PowerShell or Python) is a plus.

Responsibilities

• Proactively monitors the environment to detect and implement steps to mitigate cyber-attacks before they occur.
• Monitors security-related resources for new and emerging cyber threats.
• Independently reviews, investigates, and responds to real-time alerts within the environment.
• Independently reviews real-time and historical reports for security and/or compliance violations.
• Communicates with senior cybersecurity personnel and IT management relating to critical incidents and strategic security requirements.
• Reviews system audit logs and the logs of other cybersecurity solutions.
• Develops and executes Security Awareness activities (including recommended training) to keep employees and external customers abreast of developments and requirements of the Information and Cyber Security Program.
• Works with Security Operations Center (SOC) analysts and management to triage and respond to security alerts.
• Coordinates assessment, containment and eradication with the Incident Response Team.
• Coordinates tuning of preventative and detective security controls to increase fidelity and reduce false positives.
• Manages threat lists (e.g. whitelists, blacklists, etc.).
• Ensures vulnerabilities are remediated according to established plans.
• Independently runs internal vulnerability/penetration testing tools as instructed.
• Independently researches and recommends security patches for cybersecurity solutions.
• Independently evaluates the security impact of software changes.
• Helps monitor vulnerability and threat services to understand current risk, recommend response and mitigation/countermeasure strategies.
• Works with business units and end users to create new and enhance existing Data Loss Prevention (DLP) rules.
• Conducts independent research into and provide informed opinions on the selection of 3rd party vendors.
• Composes or reviews cybersecurity incident response plans and runbooks.
• Recommends updates to IT security policies and procedures.
• Other related duties as required.

Benefits

• Competitive salary based on experience and qualifications.
• Comprehensive health insurance.
• Retirement plan options.
• Paid time off and holidays.
• Opportunities for professional development.