Full-Time Lead Cybersecurity Analyst

Lead Cybersecurity Analyst

Job Title: Lead Cybersecurity Analyst

Location: Remote

Hiring a Lead Cybersecurity Analyst for our Cybersecurity Operations team.

Responsibilities:

• Overseeing daily cybersecurity operations and leading incident response.
• Architecting and supporting the CSOC technology portfolio and risk management program.
• Leading efforts to mature cybersecurity operations, capabilities, and processes.
• Mentoring the team and providing input into the overall cybersecurity program and strategy.
• Working closely with other IT departments and stakeholders to deliver solutions that meet business needs.
• Providing consulting services to reduce cyber risks.
• Identifying emerging threats and technologies.
• Setting technical standards for the department and company.

Duties:

• Leading incident response to malicious activity or critical vulnerabilities.
• Onboarding data, configuring SIEM integrations, and setting up security alerts.
• Leveraging security disciplines (Windows, Unix, Linux, DLP, endpoint controls, databases, wireless security, data networking).
• Ensuring continuous maturity of monitoring and incident response capabilities.
• Staying current with new threats and analyzing attacker TTPs.
• Conducting cyber investigations (suspicious file analysis, memory and disk forensics).
• Acting as a primary security resource for strategic initiatives, providing reviews and mitigation recommendations.
• Providing leadership to the cyber team by setting standards, identifying emerging threats, mentoring risk mitigation, and collaborating with business/IT.
• Promoting strategic planning by identifying and advocating for security solutions/practices.

Education:

• Bachelor's Degree in Information Technology (Preferred).

Certifications:

• Relevant information security certifications (CISSP, CISA, CISM, CRISC, or GIAC) or ability to gain one within 6 months (Required)

Experience:

• 8 years of cybersecurity work experience.
• Experience with malware analysis, forensics solutions, and utilities.
• Experience in cyber investigations using formal chain-of-custody methods.
• Solid knowledge of IT security aspects (operating systems, Active Directory, databases, LDAP, Microsoft SharePoint, web servers, networks, firewalls, cloud technologies, application development).
• Experience in regulated industries and familiarity with relevant regulations (PCI, FISMA, GLBA, FERPA, NERC CIP, TSA, HIPAA, SOX).
• Understanding and experience with SDL processes.
• Experience managing security projects involving multiple teams and project management tools.

Preferred Experience:

• 6 years of security monitoring and incident response.
• 4 years of in-depth security log analysis.

Skills and Abilities:

• Architects, leads teams, and mentors in secure by design, SDL, information risk management, and cybersecurity project management.
• In-depth knowledge of utility industry, technology trends, cybersecurity, and regulatory changes.
• Excellent collaboration skills and ability to lead cross-functional teams.

What is the last date for applying to the job?

Which countries are accepted for this remote job?