Full Job Description
The cybersecurity analyst is a member of the global cybersecurity team and works closely with the team to develop and implement a comprehensive cybersecurity program. This includes assisting with security operations tasks, and helping to document security processes and standards. The cybersecurity analyst works with the IT department to deploy technical, operational, and management controls that meet specific security requirements, and ensures that security configurations are maintained. The cybersecurity analyst will report to the Global Director, Information Security.
**Roles and Responsibilities**
**Primary Duties**
- Assists in the coordination and completion of global cybersecurity projects.
- Participates in an information security operations capacity on a daily basis.
- Reports to cybersecurity leadership concerning residual risk, vulnerabilities and other security exposures, including the misuse of information assets and noncompliance.
- Collaborates on critical IT projects to ensure that security issues are thoroughly addressed.
- Helps to develop and document security processes and procedures to, and measure their success with security metrics to ensure that security controls are effective and maintained.
- Assist with security incident response processes on an ad hoc basis and with tuning our incident detection capabilities.
- Support the relationship with our Managed Detection and Response vendor as they provide us with Tier-1 and Tier-2 SOC services.
- Manage phishing and security awareness testing and training.
**Additional Duties**
**Security Monitoring and Vulnerability Assessments**
- Works with a common set of security tools, and conducts reviews of tool output.
- Performs assessments to identify control weaknesses and determine the effectiveness of existing controls.
- Works on deploying, tuning and operating various security solutions.
- Assists with developing and validating baseline security configurations for operating systems and software applications.
- Investigate suspicious activities such as malware alerts and suspicious sign-in activity.
**Incident Detection and Response**
- Helps to provide incident response and analysis support during a security incident.
- Participates as a member of the Incident Response Team helping to resolve any security incidents.
- Assist with monitoring daily or weekly reports and security alerts for any events of interest.
- Researches and assesses new threats and security alerts, and recommends remedial actions.
**Required Qualifications**
- Three (3) years of IT and/or Cyber experience.
- Hands-on experience with Endpoint Detection and Response solutions such as CrowdStrike Falcon and/or Microsoft Defender.
**Technical Competency**
- Knowledge of common information security management frameworks, such as the NIST and/or ISO.
- Technical experience with operating systems and software applications.
- Strong written communication skills with experience in documenting and maintaining security processes, procedures and standards preferred.
- Some knowledge of network infrastructure, including routers, switches, and firewalls.
**PREFERRED SKILLS**
The successful candidate will possess:
- The ability to think with a cyber security mindset.
- Knowledge of CMMC.
- Hands on experience with Microsoft 365 Suite of tools.
- Relevant certifications such as CompTIA Security Plus or GCIH
- Experience with security tools such as log management, privileged access management, vulnerability management, data loss prevention, and/or incident response.
- Foundational understanding of Artificial Intelligence and Large Language Models (LLMs).
- College Degree (AS, BA, BS, MS)