POSITION: Cyber Security Analyst
CLASSIFICATION STATUS: Exempt/Full-time
JOB SUMMARY: The Cyber Security Analyst position reports directly to the IT Manager or the IT Assistant Manager in the absence of the IT Manager. The Cybersecurity Analyst works closely with the IT Department and other departments to develop and maintain a robust cybersecurity posture for the organization. The primary focus is to safeguard sensitive data, including Protected Health Information (PHI), Personally Identifiable Information (PII), and sensitive financial data, from both internal and external threats.
RESPONSIBILITIES: Assess and manage vulnerabilities, develop mitigation plans, and deploy patches for identified vulnerabilities. The cybersecurity analyst monitors security event management systems, conducts regular vulnerability assessments, and addresses security incidents or inefficiencies by implementing necessary improvements. Monitor the organization’s network for security breaches and investigate those breaches when they occur.
Responsible for configuring and upgrading security systems (both hardware and software), assisting with network and infrastructure upgrades. The Cybersecurity Analyst assists with regulatory reporting and compliance efforts, including audits and risk assessments for frameworks such as HIPAA, NIST, and CIS. They will also maintain documentation of security guidelines, frameworks, procedures, standards, and controls to ensure a well-documented and compliant security environment.
The Cybersecurity Analyst performs system testing on key platforms such as Active Directory (AD), Office 365 (O365), and other systems. The Cybersecurity Analyst will also collaborate with third-party vendors to manage and prevent cybersecurity threats and assist with the enforcement of IT policies across the organization.
The Cybersecurity Analyst will research the latest information technology (IT) security trends and recommend security enhancements to IT Management. Provide support, manage trouble tickets, offer staff training (both material and in-person), and collaborate with IT managers to resolve issues and deploy system fixes. Commutes to various sites for IT support and work after-hours or weekends on certain occasions to meet the organization's needs.
Maintains professional development through certifications, courses, and training. Ensuring that the Cybersecurity Analyst stays current with evolving security trends and technologies. May perform other duties as assigned by Supervisor.
REQUIREMENTS: Mature judgment, tact, discretion, and confidentiality are required. Excellent communication skills and a professional presentation with all levels of management and staff.
Must be able to work independently with minimal supervision with strong abilities in critical thinking, problem-solving, logic, and forensics.
Proven two (2) years of experience as a Cyber Security Analyst or similar role, in-depth understanding of vulnerabilities, management systems, and common security applications, proficiency with antivirus and security software, advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, and common security elements.
Aptitude for learning new systems. Familiarity or experience with Sophos, Qualys, SolarWinds, the NIST Cybersecurity Framework and ability to analyze emerging threats to stay ahead is desirable. Proficiency in Microsoft Office Suite, including Excel, Word, PowerPoint, and other related applications, is essential for this role.
OTHER REQUIREMENTS: Must possess an automobile with auto liability insurance and a valid California Driver’s License. Must submit to and pass a drug test and criminal background clearance as a pre-condition to employment. Must provide recent TB test. COVID-19 Vaccines and Boosters required.
QUALIFICATIONS: Bachelor’s degree in computer science, IT, math, or related field and least two (2) years of experience. Or a combination of education, related certifications, and four (4) work experience.
AN EQUAL OPPORTUNITY AFFIRMATIVE ACTION EMPLOYER
