Senior Cyber Security Analyst

Job Information

The Senior Cybersecurity Analyst, will be to directly provide operational support of the CSOC through providing key Threat Intelligence, Detection and Response Services for the CSP. The ideal candidate will be a Cyber Security specialist with background in analysis, security monitoring, and Incident Response for a cloud-based services environment and experience working within Cyber security operation teams. A well-qualified candidate will be comfortable working with management to educate on cyber threats and handle sensitive matters.

Key Job Functions

• Perform threat and vulnerability assessment and provide subject matter expertise on appropriate threat mitigation.
• Identify intrusion activity by leveraging alert data from multiple sensors and systems and determine priority for response.
• Leverage threat intelligence e.g. FSISAC, while actively monitoring critical financial services infrastructure.
• Assess the impact of potentially malicious traffic on company network and infrastructure.
• Perform in-depth analysis in support of network monitoring and incident response operations.
• Perform live incident response (reactive and proactive incident management) by identifying and remediating malicious applications and infrastructure components.
• Collaborate with other Information Security and IT team members to develop and implement innovative strategies for monitoring and preventing attacks.
• Develop and support appropriate metrics to measure the monitoring program and related process.
• Develop, test, and deploy new correlation content and use cases using SIEM filters, rules, data monitors, active lists, and session lists.
• Conduct research of emerging security threats.
• Propose additional components and techniques that could be used to proactively detect and prevent malicious activity.

Education

• Bachelor's Degree or equivalent required.

Minimum Experience

• Minimum 3 years of related work experience in Cybersecurity.
• Minimum 3 years of related work experience supporting cybersecurity, end user support activity and problem resolution and/or incident tracking.
• Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future. CSS does not offer H-1B sponsorship for this position.

• Solid understanding of cloud based critical infrastructure systems security threats.
• Experience with Cyber Security in the domains of cyber threat intelligence and analysis, security monitoring and Incident Response for a cloud-based services environment.
• Familiarity with latest security vulnerabilities, advisories, incidents, penetration techniques, understanding of attacks, and determination of countermeasures.
• Experience of network and system vulnerabilities, malware, networking protocols, multi-tiered applications, and attack methods to exploit vulnerabilities.
• Experience in a technical security role, including network security, operating system security, Internet or Web security, Data Loss Prevention (DLP), anti-malware, IDS/IPS, and penetration and vulnerability testing.
• Strong knowledge of networking fundamentals such as TCP/IP and basic packet analysis, network engineering, and local and wide area (LAN/WAN) technologies and topologies.
• Must have experience with security and monitoring tools (i.e. – Log management, e.g. Splunk, Fortinet/FortiAnalyzer, IDS/IPS, SIEM, Windows Defender, etc).
• General knowledge and experience in Windows / Linux Operating Systems, baseline security configurations, audit, forensics, Patch Management for these OSs.
• Experience developing Standard Operating Procedures (SOPs), job aids, and hands-on training materials.
• Be able to work in fast paced environment with occasional on-call activities.
• Excellent interpersonal skills, presentation skills, and verbal / written communication skills.
• Self-starter; adaptable to change; motivated to set personal and program goals and pro-actively track performance against goals and initiatives.
• Ability to manage multiple priorities – projects, deliverables, and stakeholders.
• Ability to influence peers and management; ability to team cross-functionally and form relationships to achieve objectives.
• Active in the security industry; equipped with external networking relationships to maintain relevant knowledge of best practices, tactics, strategies and technologies.
• CISSP, CISM Certification desired.

Employment

As a condition of employment with Common Securitization Solutions, any successful job applicant will be required to successfully complete a background investigation, which may also include a credit check for positions in some areas of our business.

Common Securitization Solutions is an Equal Opportunity Employer.##LI-Remote