SUMMARYThe Security Analyst detects, manages and reduces the impact of cybersecurity threats to the organization. They are responsible for proactively managing the security of the network and identifying weaknesses of company infrastructure (software, hardware and networks).
ESSENTIAL/ NON-ESSENTIAL JOB FUNCTIONS - Investigate security alerts / notifications from SPLUNK
- Work with the process automation team on cybersecurity initiatives
- Perform risk assessments and maintain the risk register
- Utilize Mimecast and ForcePoint for web and email monitoring
- Review IT small project charters for security risks
- Assist in the completion of vendor SSAE16's
- Work with the infrastructure team on mitigating penetration testing findings
- Plan, implement and upgrade security technical measures and controls
- Establish plans and protocols to protect data and information systems against unauthorized access, modification and/or destruction
- Perform vulnerability testing and security assessments
- Conduct internal security audits / compliance testing
- Recommend and install appropriate technical tools and countermeasures
- Define, implement and maintain corporate security policies
- Provide input into security awareness communications
- Utilize in-house tools to manage DLP
EDUCATION AND EXPERIENCE REQUIREMENTSRequired Education and Experience: - Bachelor's degree in Computer Science or the equivalent (e.g. Math, Electrical Engineering, Cyber Security, etc.)
- 5+ years of experience
- IDS/IPS, penetration and vulnerability testing
- TCP/IP, computer networking, routing and switching
- Windows, UNIX and Linux operating systems
- Network protocols and packet analysis tools
Preferred Education and Experience:- Data Loss Prevention (DLP) tools, anti-virus / anti-malware tools
- Firewall and intrusion detection/prevention protocols
- C, C++, C#, Java or PHP programming languages
- Security Information and Event Management (SIEM)
CERTIFICATIONSCISSP, CCE, CEH, GCFE, GCFA, GCIH, GCIA, CCFE, CPT, CREA, CompTIA A+ would be desirable certifications though other comparable certifications and experience would be considered
SUPERVISORY RESPONSIBILITIESSupervises others: No
BUDGETARY RESPONSIBILITIESNo, but all team members provide input into the annual planning process and tool evaluation/selections
TRAVEL REQUIREMENTSNo
COMPETENCIES• Self-starter who is able to work independently while supporting the needs of the team
• Excellent oral and written communication skills
• Strong decision making skills
• Comfortable interacting with all levels of management