Cyber Security Analyst I

The Cyber Security Analyst I provides technical support in the monitoring, reporting, and response activities of and related to security event, threat detection systems, tools, and services. The Analyst consults with other IT teams on technical matters of security, providing both routine and emergency after hours support of matters related to enterprise security.

Responsibilities:

  • Assisting with technical configuration, tuning, and tactical integration and implementation of security tools providing a spectrum of information security capabilities, including network IDS/IPS monitoring, enterprise antivirus monitoring and response, file integrity monitoring, DLP monitoring, Cyber threat intelligence, security log analysis and forensics, penetration testing, vulnerability scanning, and Cyber incident response
  • Will advise on technical security decisions regarding configuration and settings of security tools according to industry best practices and corporate policies
  • Will review & recommend secure network configurations and solutions
  • Define, monitor, and enforce secure baseline OS configurations
  • Lead risk assessments and penetration testing
  • Evaluate risk and report to CSO on the security of the infrastructure
  • Leverage IT Security tools in the remediation of vulnerabilities/risks
  • Perform incident response and digital forensic analysis duties
  • Work with the CSO to achieve the short- and long-term strategic objectives
  • Work with stakeholders to achieve and maintain information security
  • Will provide technical recommendations to influence the development, implementation, and management of incident response plans and response activities
  • Conceive, recommend, plan, and execute security/ IT compliance projects related to the strategic needs of the company
  • Anticipate, recognize and resolve issues to prevent, reduce or otherwise mitigate enterprise IT risk
  • Evaluates and documents company policies, procedures, and standards

Qualifications:

  • Cisco Firepower Intrusion Detection/Prevention System (IDS/IPS)
  • Junior level Computer Networking experience
  • Junior level knowledge of Internet Protocols, communication protocols, data and network security
  • Intermediate understanding and knowledge of encryption techniques, tools, and best practices
  • Working knowledge of distributed server secure configurations and benchmarks
  • Experience performing IT risk assessments, including on networking infrastructure
  • Knowledge of compliance and regulatory frameworks:  HIPAA/HITECH, HiTRUST, SOC, RMF as well as other evolving security and privacy regulations.

Education:

  • Bachelors in Computer Science or Cyber Security/ Information Security or 1-3 years relevant experience

Preferred Licensing/Certifications:

  • CompTIA Security+ (Required)
  • EC-Council Certified Ethical Hacker (CEH) (Required)
  • Cyber Security Analyst + (CySA+) (Preferred)

Experience:

  • Office 365 Advanced Threat Protection: 1-3 years (Preferred)
  • SCAP tools: 1-3 years (Preferred)
  • Understanding of Cyber Kill Chain: (Required)
  • Cisco Firepower Intrusion Detection/ Prevention System: 1-3 years (Required)
  • Risk Management Assessments (SOC, RMF, HITRUST): 1-3 years (Required)
  • OSINT: 1-3 years (Required)
  • McAfee ePolicy Orchestrator: 1-3 year (Preferred)
  • System Center Endpoint Protection: 1-3 years (Preferred)
  • Nessus Vulnerability Scanner: 1-3 years (Preferred)
  • Network Flow Analysis: 1-3 years (Preferred)
  • Kiwi Syslog Server:  1-3 year (Preferred)
  • NIST Special Publications: 1-3 years (Preferred)
Apply Now