Cybersecurity Analyst

Our client, a leading Financial Management Services (FMS) firm, is currently building out a brand new IT team due to recent organic growth. They are seeking a talented Cybersecurity Analyst to join their fully remote team. Reporting direction to the Director of Cybersecurity, the Cybersecurity Analyst will be responsible for the operational and technical tasks of the organization's cybersecurity and security risk management program.

Responsibilities:

• Oversee the day-to-day technical services of the company's cybersecurity platforms, services, and deliverables
• Represents information security in meetings convened to evaluate new applications and software-as-a-service offerings and evaluates other IT purchases to ensure they meet security and compliance requirements
• Monitors and validates system and service compliance with information security procedures and policies to ensure consistency of internal controls across departments
• Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors
• Develops and executes a cybersecurity awareness training program
• Assists in the development and maintenance of information security policies and procedures
• Investigates and follows through on IT security incidents in a geographically distributed environment, considering all relevant technical and non-technical stakeholders during all phases of the incident
• Analyzes reports about potential / suspected incidents, collects and analyzes technical incident information and log data, investigate, generate reports, and ensure progress on incident tickets
• Investigates SIEM alerts / events for relevance, severity, and impact and escalates incidents for further investigation or remediation

Qualifications

• At least 5+ years of relevant work experience in at least one of the following areas: Cybersecurity operations, Incident Response, Threat Intelligence, Threat Hunting and Digital Forensics
• Technical system expertise with relevant exposure and expertise in IT Security, in several of the following technologies: Linux and Windows operating systems, web-technologies (encryption, HTTP, REST), networking, cloud environments
• General knowledge of on-premises, cloud, and mobile computing environments (e.g., Microsoft Windows, Apple Macintosh, Linux, AWS, Azure, Google), scripting languages, and security best practices
• Working knowledge and demonstrated ability to perform risk assessments, risk impact analysis, mitigating and compensating control recommendations as applied to information security
• Experience in the following technologies - SIEMs, WAFs, IDS/IPS, anti-malware, EDR, SOAR, secure cloud access, vulnerability scanning platforms, DLP, private cloud, and open-source security frameworks
• Experience presenting analytic conclusions and research to both technical and non-technical audiences through briefings, emails, etc.
• General knowledge and demonstrated ability to perform vendor vulnerability and security governance assessments
• Demonstrated ability to develop, maintain, and execute a cybersecurity awareness program