Job Description
As a member of the Information Security team, the Cybersecurity Analyst is responsible for protecting the company from intrusions, malware, threat actors, and other forms of cyber attacks. The Cybersecurity Analyst will be involved in supporting efforts to automate, integrate, and aggregate the data and systems needed to optimize and accelerate analysis.
Essential Duties And Responsibilities Include
Researches emerging threats and vulnerabilities to aid in the identification of network incidents, and supports the creation of new architecture, policies, standards, and guidance to address them
Provides incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary
Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies
Conducts network monitoring and intrusion detection analysis using various computer network defense (CND) tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security system (HBSS), etc.
Reviews alerts and data from sensors and documents formal, technical incident reports
Tests new computers, software, switch hardware and routers before implementation to ensure security
Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources
Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization
Correlates activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous activity
Reviews alerts and data from sensors, and documents formal, technical incident reports
Works with threat intelligence and/or threat-hunting teams
Researches emerging threats and vulnerabilities to aid in the identification of incidents
Requirements
Bachelor’s degree preferred; degree in computer science, engineering, information systems or another related discipline strongly preferred.
Five plus (5+) years of work experience in information security, especially in a network security analyst role.
Desired, but not required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM)
Technical expertise in analyzing threat event data, evaluating malicious activity, documenting unusual files and data, and identifying tactics, techniques and procedures used by attackers
Familiarity with business needs and commitment to delivering high-quality, prompt and efficient service to the business
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
An understanding of organizational mission, values, and goals and consistent application of this knowledge
Strong Problem-solving And Trouble-shooting Skills
Self-motivated and possessing of a high sense of urgency and personal integrity
Preferred Qualifications
Ability to articulate new ideas and concepts to technical and nontechnical audiences.
Ability to work effectively with different types of scenarios and challenges.
Ability to address tasks and projects for which no precedence exists in the organization
Ability to propose and estimate the financial impact of security architecture alternatives.
Ability to work creatively and analytically to solve business problems and propose solutions.
Ability to work effectively in a team environment and partner with cross-functional teams.
Ability to quickly comprehend the functions and capabilities of new technologies.
