Sr. Cyber Security Analyst

Summary

Perdue Farms is looking for a Senior Cyber Security Analyst to enhance our technical capabilities for identification, prevention, detection, and response to Cyber Security threats utilizing an array of technologies, such as SIEM, EDR/NDR, IDS/IPS, etc.  As part of the Cyber Security operations team you will lead investigations, tabletop exercises, e-discovery/forensics, technology enhancements, threat hunting, and coordinating with partners to execute web application assessments and penetration testing.

Principal and Essential Duties & Responsibilities

• Manage and oversee Perdue’s SIEM technology and Managed Security Services providers (MSSP) to detect and respond security to events and alerts.
• Operate and oversee the vulnerability and threat management program across the Perdue landscape while engaging with multiple teams to ensure a secure risk posture.
• Lead Perdue’s Incident Response program, including incident response playbooks, tabletop exercises and managing third party IR firms.
• Provide technical guidance on how to investigate and respond to security events and lead information security incident response efforts.
• Engage partners for routine execution of Penetration Testing, Red Team Engagement, Security and Web Application Assessments
• Oversee the deployment and management of our Endpoint Detection and Response (EDR) and (NDR) network response technologies.
• Be a leader in the expansion and growth of the information security monitoring capability within the information security program; drive the integration of new products and services.
• Perform incident response and investigations as part of the computer security incident response team (CSIRT) and participate in on-call rotation
• Work with Legal Counsel in supporting Forensics and eDiscovery request.
• Monitor system logs and network traffic for unusual or suspicious activity. Interpret such activity and make recommendations for resolution.

Minimum Education

A bachelor’s degree in Information Systems, Cyber Security, Computer Science or related discipline is preferred, however, equivalent years of experience may be considered in lieu of educational requirements.

Preferred Certifications:  CISSP, CISM.   Additional Certifications considered, GCIA, GCIH, GISP, CEH

Experience Requirements

​​​​​​Minimum 5 years’ experience in Information Security including a combination of the following:

• Overseeing Security Information and Event (SIEM) technologies.
• Running and leading incident response, including playbooks, tabletops, IR vendors and responding to security events.
• Leading and remediating operating system and application vulnerabilities.
• Experience analyzing log sources originating from security and networking devices such as firewalls, routers, proxy, anti-virus products, and operating systems required.
• Experience HIDS/NIDS, SIEM, anti-virus, packet capture tools, host-based analysis technologies in a Security Analyst capacity
• Advanced knowledge of managing or supporting endpoint detection and response (EDR) or related technologies.
• Advanced knowledge regarding the administration, use, securing and exploitation of common operating systems.
• Knowledgeable of computer forensic analysis, data recovery, and eDiscovery.
• Knowledgeable of security frameworks and standards, NIST CFS, ISO 27000, CIS.
• Strong verbal and written communication skills.
• Good team player with excellent interpersonal skills, self-confident, motivated, and capable of working with limited supervision.
• Strong analytical and problem-solving skills to enable effective security incident and problem resolution.
• Proven ability to work under stress in emergencies, with the flexibility to handle multiple high-pressure situations simultaneously.

Environmental Factors and Physical Requirements

The environmental factors and/or physical requirements of this position include the following:
Ability to work in an open-partitioned cubicle environment.
Ability to communicate via telephone.
Ability to support off-hours for problems and staffing coverage.
Ability to operate a computer terminal and a workstation, using keyboard, mouse and reading a monitor.
Ability to remain stationary for up to 7.5 hours a day or more.
Ability to travel, possibly overnight, to any customer area, which could be any Perdue facility or to a remote site for disaster recovery or training.
Ability to carry or transport hardware/software up to 30 lbs. Must be able to implement hardware.
Ability to climb stairs/ladder, work in parts of the building/facility which house the wiring infrastructure to review, test or implement computer products/services..