Job Role: Cybersecurity Metrics Analyst
Location; Fort Worth, Texas (Hybrid, Local Only)
Visa: USC/GC/GCEAD/H4EAD
Duration: Long Term Contract
IMPORTANT INFORMATION: This contract is planning on extending past the 12/31 end date and doesn't have the headcount to convert but could possibly in the future but the manager is open to visa candidates.
Note: Interviews will be in two rounds, the first virtual and the second onsite. The candidate will be required to follow the hybrid requirement.
Job description:
The Cybersecurity Metrics Analyst will work as part of the Cybersecurity Metrics and Reporting team in coordinating and overseeing American’s cybersecurity metrics program. This individual will assist in the identification, measurement, and analysis of cybersecurity metrics, as well as support the continued metrics framework development and implementation. The Cybersecurity Metrics Analyst will work closely with cross-functional teams, including metric owners, metrics technical teams, cybersecurity product teams, and executive stakeholders to ensure the successful maintenance of cybersecurity risk metrics and their visibility to leadership.
Required Experience/Knowledge
● Bachelor's degree in computer science, information technology, or a related discipline, or equivalent experience/training
● 3+ years of experience in identifying, measuring, analyzing, and reporting cybersecurity metrics
● Ability to work with cross-functional teams and stakeholders to gather requirements and ensure successful implementation of cybersecurity metrics
● Experience working in multiple cybersecurity domains to develop an understanding of relevant metrics and their implications
● Excellent analytical and problem-solving skills to identify trends, patterns, and anomalies in cybersecurity data
● Experience with pulling, testing, and reporting cybersecurity metrics on a regular schedule to support business requirements
● Excellent communication and presentation skills to effectively communicate complex cybersecurity metric concepts to both technical and non-technical stakeholders
● Strong attention to detail and ability to produce accurate and high-quality metrics reports for leadership audience up to the Board level
● Familiarity with industry best practices related to cybersecurity metrics and reporting
● Knowledge of industry-standard cybersecurity frameworks, such as NIST Cybersecurity Framework or ISO 27001
Preferred Experience/Knowledge
● Proficiency in using data analysis and visualization tools e.g. MS Office, PowerBI
● Familiarity with cybersecurity risk assessment methodologies and tools
● Familiarity with the various tools and technologies leveraged within cybersecurity and information technology programs from which metric data is collected
● Knowledge of applicable regulatory requirements (e.g., TSA, FAA, PCI DSS)
● Experience working in highly regulated industries such as finance, healthcare, or government