Cybersecurity Analyst

BISSELL Homecare•Grand Rapids, MI

About The Position

As a member of BISSELL's Privacy and Cybersecurity team, the Associate Cybersecurity Analyst will act as a valuable contributor to the implementation and support of our global organization’s cybersecurity infrastructure. The role will contribute to successful project deployments, exceeding customer expectations, and providing ongoing support and maintenance security tools, with a focus on reliability and security of the BISSELL digital systems and services. Finally, this position also plays a hands-on role in detecting, escalating, and responding to privacy and cybersecurity incidents. The Associate Cybersecurity Analyst will be a crucial advocate for the advancement of positive, ethical principles and conduct aligned with the organization’s Core Values. This role requires an excellent communicator and technically minded individual that is passionate about cybersecurity, cloud computing, data protection, and tackling complex problems across a diverse set of colleagues and stakeholders. This role sits within legal and reports to the Director, Privacy & Cybersecurity.

Requirements

Bachelor’s degree (or equivalent) in cybersecurity, information technology, or computer science, with coursework focused on data protection or cybersecurity or related field.
1 year of experience in a Cybersecurity or related role, with strong academic background and understanding of modern data processing environments, service-oriented architectures, cloud computing technologies and relevant cybersecurity, data protection, and privacy standards.
Strong and demonstrated written and oral communication skills
Ability to exercise sound judgement, problem solve and make decisions in complex situations.
Proven ability to take ownership, self-motivate, and deliver results in sometimes ambiguous situations.
Experience working with large, enterprise-wide technology implementations that impact multiple business functions.
Excellent written and verbal communication skills with the ability to present complex information in a clear and concise manner to leadership.

Nice To Haves

Certifications demonstrating relevant cybersecurity or data protection knowledge (e.g. ISC2 CC, CompTIA Security+, CEH, CISSP, or CISM)
Experience in a global, consumer-facing, or manufacturing organization.
Basic scripting (Bash and/or PowerShell) for automation
Knowledge of MITRE ATT&CK or NIST frameworks

Responsibilities

Collaborate with various IT and business stakeholders to implement security controls promptly, minimizing business disruption.
Monitor, triage, and investigate alerts in the organization’s SIEM and respond thoughtfully considering organization’s priorities and availability of resources.
Identify, remediate, advise, monitor, and report on security patch management. Address lapses and consult with system custodians on appropriate controls.
Monitor the organization’s cloud security posture and work with IT and other business stakeholders to implement best practices across the organization’s Azure, AWS, and Oracle cloud environments.
Monitor security incidents, advise on incident response processes, triage incidents by severity, and escalate severe events as per incident response plans.
Create and maintain cybersecurity response documentation, incident playbooks, and internal processes.
Demonstrate creative problem solving, conflict resolution, and critical thinking skills. Provide business-focused and risk-balanced solutions to challenges faced by the business.
Successfully prioritize work, meet deadlines, and manage multiple tasks independently.
Continuously identify areas for improvements in processes, including tuning security alert rules to improve signal-to-noise ratio for false positives.
Stay updated on current technologies and global trends and risks through ongoing training and knowledge maintenance.