Cybersecurity Sr. Analyst
Job Description This is a non-exempt role.
The Cybersecurity Sr.
Analyst contributes to the support of cybersecurity operations by designing, developing or recommending secure technical solutions, including policy, standards, applications, systems, architectures, and infrastructure that are operationally viable and efficient.
Perform responsibilities to ensure that the appropriate application of security products and technologies are in place to protect the organizations systems and information and enable achievement of the organizations objectives.
Contribute to the design of cybersecurity toolsets to enable more automated discovery, remediation, and alerting of network and device vulnerabilities, as a means of improving the security posture.
Perform analysis of emerging technologies and design and build architectures and solutions to enable secure implementation of new technologies.
Duties:
Contribute to the development of a risk-based cyber security program which meets regulatory requirements and aligns with industry leading information security practices.
Perform threat identification and mitigation activities using industry leading security controls and tools sets.
Support the advancement of the Companys cyber threat and vulnerability management program to ensure consistent identification, analysis, response, and monitoring of cyber security threats, events, and vulnerabilities.
Assess threats to the business and deploy countermeasures for those threats.
Guide business units, application development teams, and third-party vendors to achieve program requirements while enabling the business.
Apply technical knowledge to protect the Company against cyber threats (e.
g.
, knowledge of firewalls, intrusion detection and prevention systems, data loss prevention solutions, endpoint protections, log aggregation technology and other leading-edge security technologies).
Participate in cross-team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects.
Contribute subject matter expertise on security projects to ensure the timely, on budget, and effective implementation of cyber security improvements that are operationally supported with validation methods in place to measure effectiveness.
Perform assessment of cyber security incidents to identify the root cause, respond, and recover the environment.
Support management in the development of strategies, policy and standards to protect company information and technology assets.
Required:
4 to 6 years of experience is required.
Possess expertise in valuing and implementing industry standards such as the ISO 27001/2, SOC 2, HITRUST and FedRAMP Information Security standard and the ISO 22301 Business Continuity Standard.
Experience with implementation and operational use of GRC toolsets (Governance Risk and Compliance).
Possess CISSP certification (or similar) and be knowledge of national and international regulatory compliances and frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS.
Recommended Skills Certified Information Systems Security Professional Computer Security Governance Health Insurance Portability And Accountability Act (Hipaa) Compliance Information Leak Prevention Infrastructure Management Estimated Salary: $20 to $28 per hour based on qualifications.
The Cybersecurity Sr.
Analyst contributes to the support of cybersecurity operations by designing, developing or recommending secure technical solutions, including policy, standards, applications, systems, architectures, and infrastructure that are operationally viable and efficient.
Perform responsibilities to ensure that the appropriate application of security products and technologies are in place to protect the organizations systems and information and enable achievement of the organizations objectives.
Contribute to the design of cybersecurity toolsets to enable more automated discovery, remediation, and alerting of network and device vulnerabilities, as a means of improving the security posture.
Perform analysis of emerging technologies and design and build architectures and solutions to enable secure implementation of new technologies.
Duties:
Contribute to the development of a risk-based cyber security program which meets regulatory requirements and aligns with industry leading information security practices.
Perform threat identification and mitigation activities using industry leading security controls and tools sets.
Support the advancement of the Companys cyber threat and vulnerability management program to ensure consistent identification, analysis, response, and monitoring of cyber security threats, events, and vulnerabilities.
Assess threats to the business and deploy countermeasures for those threats.
Guide business units, application development teams, and third-party vendors to achieve program requirements while enabling the business.
Apply technical knowledge to protect the Company against cyber threats (e.
g.
, knowledge of firewalls, intrusion detection and prevention systems, data loss prevention solutions, endpoint protections, log aggregation technology and other leading-edge security technologies).
Participate in cross-team coordination to achieve defined security goals as well as meet technical requirements in support of detailed implementation plans for security projects.
Contribute subject matter expertise on security projects to ensure the timely, on budget, and effective implementation of cyber security improvements that are operationally supported with validation methods in place to measure effectiveness.
Perform assessment of cyber security incidents to identify the root cause, respond, and recover the environment.
Support management in the development of strategies, policy and standards to protect company information and technology assets.
Required:
4 to 6 years of experience is required.
Possess expertise in valuing and implementing industry standards such as the ISO 27001/2, SOC 2, HITRUST and FedRAMP Information Security standard and the ISO 22301 Business Continuity Standard.
Experience with implementation and operational use of GRC toolsets (Governance Risk and Compliance).
Possess CISSP certification (or similar) and be knowledge of national and international regulatory compliances and frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS.
Recommended Skills Certified Information Systems Security Professional Computer Security Governance Health Insurance Portability And Accountability Act (Hipaa) Compliance Information Leak Prevention Infrastructure Management Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
