Network Security Analyst

Windstream Holdings, Inc., is a leading provider of advanced network communications and technology solutions for consumers, small businesses, enterprise organizations and carrier partners across the U.S.

• Kinetic is a premier internet solutions provider on a mission to deliver ultra-fast, reliable internet to consumers and small businesses across the U.S., helping them Internet better .
• Windstream Enterprise is a leading managed services provider providing strategic communications and security products to mid-size businesses and enterprise clients.
• Windstream Wholesale provides high-capacity, high-performance networking solutions and services to other telecom carriers, data centers, content providers and enterprises.

The Windstream team provides innovative software and network solutions to connect people and empower business in a world of infinite possibilities!

About This Role:

The Analyst II - We are seeking a skilled Cybersecurity/Network Operations Center Analyst to join our Threat Detection and Response team. The ideal candidate will have a strong background in cybersecurity operations, with specific experience in monitoring, detecting, and responding to threats in a dynamic ISP environment. This role requires expertise in network devices, particularly routers and switches, to ensure our products and services are protected against evolving cyber threats. Additionally, the Analyst II will be responsible for monitoring, detecting, and responding to cybersecurity incidents across our IT networks, servers, and workstations.

What You'll Do:

• Vigilantly monitor events through Managed Detection and Response (MDR), Endpoint Detection and Response (EDR), Security Information and Event Management (SIEM) systems, and other ticketing portals to identify anomalous activities.
• Utilize SIEM, behavioral analytics, and network analysis tools to detect and respond to incidents affecting workstations, servers, and network infrastructure.
• Analyze diverse log files (e.g., host logs, network traffic logs, firewall logs, IDS logs) to identify potential security threats.
• Apply knowledge of security principles, techniques, and technologies to safeguard network security.
• Understand network protocols, devices, various operating systems, and secure architectures to detect and respond to events effectively.
• Conduct threat detection and incident response using security best practices and current technologies to efficiently mitigate cybersecurity incidents.
• Formally document and track identified incidents from detection through resolution in alignment with Windstream's Cyber Security policy.
• Apply knowledge of routers and switches to ensure detection mechanisms are in place and perform forensic operations on these devices.
• Support evidence collection for compliance with PCI-DSS, SOX, and other regulatory requirements.
• Participate in offensive and defensive cybersecurity exercises, including Red/Blue team activities and tabletop exercises.
• Adapt to a 24x7 support schedule to ensure continuous security monitoring and response.

Qualifications:

• Experience in triaging security or network events.
• Familiarity with concepts or technologies such as SIEM, secure mail gateway, endpoint detection and response, secure internet gateway, RADIUS or TACACS, packet flow, TCP/UDP traffic, firewall, and IDS/IPS within a security operations center.
• Hands-on experience with networking equipment, including routers and switches.
• Competence in conducting incident response activities and driving incidents to successful remediation.
• Strong foundational knowledge of IT security principles and secure architectures.
• Excellent analytical and problem-solving abilities, with a capacity to quickly learn new technologies.
• Demonstrated capability in process execution, time management, and organizational skills.
• Having a Cisco certification, such as CCNA, CCNP, or CCT, is a plus, demonstrating expertise in networking, routing, and switching.

Required Certifications:

Candidates are expected to hold or obtain within the first 12 months of employment at least one of the following certifications: SSCP, SANs training (401 or 503 preferred), Network+, Security +, or an equivalent certification, underlining a commitment to professional development in the cybersecurity field.

Physical Tasks- Standing Occasionally: 0-33% | Walking Occasionally: 0-33% |Sitting Continuously: 67-100% | Bending: Occasionally: 0-33% | Crouching: Occasionally: 0-33% | Pushing-Pulling: Occasionally: 0-33% | Carrying: Occasional: 0-33% | Reaching Above Head: Occasionally: 0-33% | Lifting-Lowering >1-15 lbs: Occasionally: 0-33% | Repetitive Hand Action: Medium Dexterity: Continuously: 67-100% | Fine Manipulating: frequently: 34% - 66%

Audio Visual Needs - Hearing: Continuously: 67-100%| Near Vision: Continuously: 67-100% | Far Vision: Occasionally: 0-33% | Peripheral Vision: Occasionally: 0-33%

Equipment Used in Job Performance: Computer, Printer, Telephone, Basic Office Supplies, Copier

Our Benefits:

• Medical, Dental, Vision Insurance Plans
• 401K Plan
• Health & Flexible Savings Account
• Life and AD&D, Spousal Life, Child Life Insurance Plans
• Educational Assistance Plan
• Identity Theft, Legal, Auto & Home and Pet Insurance
• ;/li>

Windstream is an equal opportunity employer. At Windstream, we celebrate the authenticity and uniqueness of our people and their ideas. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, genetic information, protected veteran status, current military status, disability, sexual orientation, gender identity, marital status, creed, citizenship status, or any other status protected by law, and to give full consideration to qualified disabled individuals and protected veterans.

Actual base pay for this job will depend on the candidate's primary work location and other factors, such as relevant skills and experience.

Notice to Non-U.S. Citizens: Windstream, as a holder of licenses granted by the Federal Communications Commission, is required to notify and to obtain approval from federal regulatory agencies prior to granting certain system/network access to any non-U.S. citizen personnel. Offers of employment extended to non-U.S. citizens are contingent upon receiving the requisite approval from agencies overseeing compliance. Non-U.S. citizens are required to provide Windstream with the personal identifying information required to obtain the necessary approval prior to accessing certain systems and/or Windstream's network. If you are not a U.S. citizen, please notify your recruiter or email as soon as possible for information on Windstream's foreign personnel disclosure and approval requirements.