Cybersecurity Analyst Job Summary
The Security Analyst is responsible for configuring and utilizing an array of different Security tools, specifically to provide Compliance Reporting, Alerting, and Incident Analysis. The Security Analyst is an architect / implementer of security solutions and works with other engineers and product focused personnel to provide the best possible solution for the client. This position requires proficient security skills, particularly with Tenable and Cisco products, and solutions or comparable SIEM solutions. Emphasis is placed on the ability to thoroughly understand client and to make sound recommendations. The Security Analyst will have responsibility for writing technical reports and document findings as evidence for reporting and Incident Response as required.
Essential Functions:
- Consults with clients to effectively understand technical requirements and translate to a solution
- Works in a team environment with account managers and product specialists to effectively develop solutions designs and statements of work
- Able to decipher Security Events and Event correlation using an array of Security Tools (including logs from FMC, Graylog, M365, MDR, EDR, etc.).
- Must follow current compliance procedures, assure clear and accurate documentation, and develop or implement more efficient tools and procedures to ensure compliance
- Good organizational skills to maintain documentation and evidence gathering for reporting and Incident analysis
- Configure and utilize Tenable Nessus for vulnerability scanning and reporting
- Solid understanding of TCP/IP protocol and associated ports and services
- Solid Understanding on Firewall Access Control Lists and configurations
- Work with Vendor support to resolve any issues that may arise
- Must be confident in asking questions and bringing attention to concerns that may arise
- Participation in on-call with other members of the team to support Incident Response for client
Desired Skills:
- Develop scripts on Linux platforms to support Cybersecurity Vulnerability Assessments (CVA) as well as aid security controls audits
- Ability to develop and utilize PowerShell scripts as part of projects and incident response.
Required Qualifications:
- Minimum of 5 years of experience working in Information Technology
- Experience working with Tenable Security Center or other SIEM solutions generating reports, configuring alerts and performing Incident Response investigations
- Experience with Cisco products and solutions
- Must be able to obtain and maintain security clearances for clients
- Must be able to drive and travel overnight to support clients
Preferred Qualifications:
- Strong documentation skills and writing skills
- Strong analytic skills
- Proficient knowledge of firewalls, AV, IDS/IPS concepts
- Minimum of 5 years of experience in Cybersecurity related disciplines and supporting a compliance environment
Desired Certification/ Licensing:
- Ability to pass background checks
- Security +
