Sr. Cyber Security Analyst

About The Position

Requirements

• Minimum 5 years of experience in Information Systems.
• Strong understanding of the key functions of cybersecurity, cyber risk mitigation strategies, and event and incident flows within a Security Event and Incident (SEIM) system.
• Ability to define the problem, generate and select alternatives, and implement solutions.
• Intermediate understanding of MITRE and Adversarial Tactics, Techniques and Common Knowledge (ATT&CK) framework for Information Technology and Operational Technology Networks.
• Strong understanding of one or more computer programming and/or scripting languages (PowerShell, KQL, Python, etc.).
• Intermediate understanding of network ports, protocols, and services, host and network-based Intrusion Prevention Systems (IPS).
• Advanced understanding of system and network logging events.
• Familiarity with the National Institute of Standards and Technology NIST 800-53 Control Families and the NIST Cyber Incident Response steps.
• A Bachelor’s degree in Information Systems, Computer Science, or a related technical field from an accredited college or university.
• Cybersecurity Tools & Technologies
• Information Security
• Access Control
• Incident Response
• Adaptable & Agile
• Attention to Detail
• Analytical & Problem-Solving Skills
• Teamwork
• Communication Skills

Responsibilities

• Supports the Director, Cyber Security Services, in ensuring Enterprise’s preparedness to address cyber risks.
• Maintains user access controls for computing resources.
• Monitors SOC operations to detect, analyze, and respond to cyber incidents, including intrusion attempts, malware infections, and other security threats, across IT and OT networks.
• Analyzes security events and incidents within the Enterprise Computing and Network environment, investigating root causes, assessing impact, and coordinate and document response actions to mitigate risks and minimize operational disruptions.
• Tests, implements, deploys, maintains, reviews, and administers the infrastructure software required to effectively manage the Enterprise network defenses and resources.
• Monitors Enterprise’s network to actively remediate unauthorized activities.
• Assists in disaster recovery operations, using preparation, identification, mitigation, remediation, and recovery approaches, as needed to maximize business resilience and information security.
• Collaborate with the Director, Cyber Security Services, to incorporate threat intelligence obtained from third-party providers into Cyber Controls, enhancing Enterprise's ability to proactively identify and mitigate emerging threats.
• Conducts and reports outcomes of vulnerability and penetration testing on IT and OT systems, identifying and prioritizing vulnerabilities for remediation to reduce the risk of exploitation by malicious actors.
• Uses advanced threat hunting techniques and tools to identify and neutralize threats before they escalate.
• Documents security incidents, investigations, and response activities in accordance with established procedures, ensuring accurate and thorough reporting for compliance, audit, and legal purposes.
• Determines deviations from acceptable configuration, vendor, or IT Policy.
• Generates security metrics, dashboards, and reports to provide visibility into key cybersecurity performance indicators, trends, and emerging risks for the senior executive team.
• Oversee the receipt and distribution of IT assets owned, leased, or subleased by Enterprise to IT and OT, including creation and maintenance of supporting documentation to manage the acquisition and disposal of IT assets.
• Continuously assesses and improves Enterprise's cybersecurity capabilities, processes, and procedures, leveraging lessons learned, industry best practices, and emerging technologies to enhance overall cyber resilience and readiness.

Benefits

• Medical, Dental and Vision
• Health Savings Account
• Flexible Spending Account
• STD, LTD, Supplemental life insurance and ADD&D
• Comprehensive 401k plan
• Paid Time Off