Principal Cyber Security Analyst

About The Position

Requirements

• Minimum 10 years of relevant experience required.
• In lieu of a degree, 14 years of relevant experience or an equivalent combination of education and experience totaling 14 years may be considered.
• Minimum of 10 years cumulative experience
• Ideal candidates should have 5 to 10 years of Information Technology and/or InfoSec experience.
• The applicant should have a moderate to strong understanding of two or more of the areas listed below and have at least basic knowledge across most areas.
• SIEM technologies (Splunk experience a plus)
• Windows and Linux architectures, administration, and hardening
• Thorough understanding of the TCP/IP network stack, including common protocols and network topologies
• Network traffic analysis and packet capture tools (Wireshark, Bro/Zeek, etc)
• IDS/IPS technologies
• Enterprise antimalware/Endpoint Detection & Response (EDR) platforms
• Microsoft Azure/M365 architectures and security features
• Incident response and forensic analysis tools and procedures
• Vulnerability management and mitigation concepts
• Programming or scripting experience (PowerShell, Python, etc)
• SOAR platforms, integrations, and automation techniques
• All candidates must be legally authorized to work in the United States.
• Currently, SRP does not sponsor H1B visas, OPT, or other employment-related visa's.

Nice To Haves

• A bachelor's degree relevant to the assignment from an accredited institution is preferred.
• Industry security certifications are beneficial but not required. Examples of relevant certifications include CISSP, SANS/GIAC (GSEC, GICSP, GRID, GCIP, GMON, GCIA, GCFA, etc), Security+, CCNA/CCNP Security.
• Computer Information Systems, Computer Science, Cyber Security or degree in a similar technical discipline is preferred.
• Industry security certifications preferred, including CISSP, SANS/GIAC (GSEC, GMON, GCIA, GCFA, etc), Security+, CCNA/CCNP

Responsibilities

• Identify, triage, and respond to cyber security events in SRP's corporate and operational environments
• Analyze data from multiple sources and tools to discover anomalous and adversarial behavior
• Serve as escalation tier for event investigations, providing guidance to other analysts on the team
• Maintain awareness of current threat landscape utilizing threat intelligence from government and industry partners, as well as information security community resources.
• Develop alerts, reports, and dashboards within the SIEM to facilitate detection and triage.
• Create playbooks and procedures to support detection and response scenarios
• Advise and support implementation of security controls and new defensive capabilities
• Develop thorough understanding of relationship between IT/OT environments, business value of OT systems, and potential attack vectors in OT environments
• Leverage knowledge of SRP's environment to conduct proactive threat hunts
• Participate in department on-call rotation to respond to after hours events

Benefits

• Pension Plan (at no cost to the employee)
• 401(k) plan with employer matching
• Medical, vision, dental, and life insurance
• Over 200+ hours of PTO (includes vacation days, holidays, floating holidays, and sick leave)
• Parental leave (up to 4 weeks) and adoption assistance
• Wellness programs (including access to a recreation and fitness facility)
• Short and long-term disability plans
• Tuition assistance for both undergraduate and graduate programs
• 10 Employee Resource Groups for career development, community service, and networking