Senior Cyber Security Specialist II

About The Position

Requirements

• Bachelor's degree and at least 5 years of Information/Cyber Security experience OR a High School Diploma/GED and at least 7 years of Information/Cyber Security experience.
• Experience presenting to and interacting with the Executive level.
• At least 4 years of Cyber Security experience in at least three of the following: Active threat hunting (open source or commercial tooling), Intrusion analysis, Managed or enterprise information security services, Incident response, Endpoint forensics (Windows, MAC, or Linux), Malware analysis, Penetration testing, Network defense, Threat hunting, Information security consulting.
• Experience establishing & maintaining relationships with individuals at all levels of the organization, in the business community & with vendors.
• Experience analyzing and reporting data in order to identify issues, trends, or exceptions to drive improvement of results and find solutions.
• At least 2 years of experience contributing to financial decisions in the workplace.
• At least 2 years of direct leadership, indirect leadership and/or cross-functional team leadership.
• Willing to travel up to/at least 10% of the time for business purposes (within state and out of state).

Responsibilities

• Leads threat detection by identifying threats at the first phase of an attack or compromise.
• Detects threat actor activity including exploitation and risk to critical systems.
• Monitors specific cyber threat actors to understand their tactics and techniques.
• Utilizes data analysis, threat intelligence and cutting-edge security technologies to find unusual behavior and malicious activity.
• Leads the hunt for hidden and unidentified threats to the organization's cyber environment.
• Tracks down the malicious agents who are already in a network and removes them from the environment once discovered.
• Works with security monitoring tools such as firewalls, data loss prevention, network intrusion detection and antivirus software.
• Uses a hypothesis-driven approach and behavioral analysis to uncover connections and correlations between potential cyber threats.
• Reviews audit logs to identify unusual behavior in the network and endpoint devices.
• Documents findings and incident investigations.
• Provides feedback and training to improve security controls.
• Leads in assessing network vulnerabilities and identifying critical security flaws by testing and validating the security of the network.