Cyber Security Analyst

Please send your resume in WORD format should you be interested in the following Cyber Security Analyst

• Work with the Manager of Cyber Security to establish and enhance the Cybersecurity program, implementing projects that reduce risk and satisfy business security requirements.
• Monitor, research and classify security events and incidents triggered by endpoint and network security tools.
• Maintain and follow runbooks/playbooks for security event alerts and incidents.
• Analyze and share Threat Intelligence and determine impact for the organization.
• Implement and maintain the Threat Intelligence Platform for curated threat intelligence and case management.
• Develop and coordinate processes for Continuous Logging and Monitoring, SIEM and Incident Response.
• Monitor and report on emerging risk and compliance with organizational security policies.
• Enhance key performance indicators, metrics and ongoing monitoring.
• Support internal and external audits and assessments and recommend appropriate mitigations to treat identified risks.
• Support the Vulnerability Management program by conducting recurring scans of all systems and applications, providing guidance to IT teams for the remediation of identified vulnerabilities.
• Participate in business continuity and disaster recovery planning, as well as change management forums.
• Stay current on topics in Information Security by researching emerging trends, technologies, threats, and vulnerabilities.

• Minimum of 1 to 2 years’ experience in Security Operations and/or other IT-related fields (Networking, Systems Administration).
• Bachelor’s degree in a technology field preferred.
• Certification in one or more areas, or willingness to obtain: BTL1, CISSP, GIAC, OSCP, Sec+, CEH or similar.
• Familiarity with scripting (Python, Bash and/or PowerShell).
• Familiarity with the NIST Cybersecurity Framework, MITRE ATT&CK, OWASP Top 10, CWE/SANS Top 25, NIST 800-53, ISO 27001/27002, and CIS CSC.
• Experience developing and maintaining policies, procedures, standards, and guidelines.
• Experience working in a regulated environment preferred.

• Keen understanding of cybersecurity and Data Protection tools including SIEM, IDS/IPS, AV/EDR, NDR, DLP and other technologies Understanding of Windows and Linux Operating Systems and networking protocols.
• Experience analyzing system and network traffic for suspicious activity.
• Ability to effectively convey complex security concepts to multiple audiences, including business and technical leaders and contributors.
• Experience defining, implementing, and improving Cyber Security standards, controls and procedures.
• Experience with commercial Vulnerability Management tools (i.e. Tenable, Rapid7, Qualys) a plus.
• Familiarity with Azure and AWS environments.
• Comfortable working with a variety of technologies supporting large scale deployments, troubleshooting solutions issues, and proficient in monitoring and investigating security events.
• Self-motivated and team oriented, with the ability to drive initiatives under minimal supervision.
• Excellent verbal, written, and interpersonal communication skills.
• Strong customer / client focus, with the ability to manage expectations appropriately.