Senior Cybersecurity Engineer/Analyst

Job Description:

Responsibilities:

1. Security Operations: Lead security monitoring, incident response, and threat detection efforts to protect against cybersecurity threats and attacks. Analyze security events, alerts, and incidents to identify and mitigate risks in a timely manner.

2. Vulnerability Management: Oversee vulnerability assessments, scans, and remediation efforts to identify and mitigate security vulnerabilities in systems, networks, and applications. Develop and implement vulnerability management processes and procedures.

3. Security Tool Administration: Manage and maintain security tools and technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus/endpoint protection solutions, and security information and event management (SIEM) systems. Ensure the effective operation and configuration of security tools to support cybersecurity objectives.

4. Security Architecture and Design: Design and implement security architectures, solutions, and controls to protect the organization's infrastructure and assets. Develop security standards and best practices for systems, networks, and applications.

5. Incident Response and Forensics: Lead incident response activities, including investigation, analysis, and resolution of security incidents. Conduct digital forensics and incident response (DFIR) investigations to determine the root cause of security incidents and implement preventive measures.

6. Security Awareness and Training: Develop and deliver security awareness and training programs to educate employees about cybersecurity best practices, policies, and procedures. Promote a culture of security awareness and compliance across the organization.

7. Compliance and Risk Management: Ensure compliance with regulatory requirements and industry standards. Conduct risk assessments and audits to identify and mitigate security risks. Develop and implement security controls to address compliance requirements.

8. Security Documentation and Reporting: Maintain documentation related to cybersecurity policies, procedures, standards, and guidelines. Prepare reports and documentation for internal and external stakeholders, including security incidents, vulnerabilities, risk assessments, and compliance audits.

9. Collaboration and Leadership: Collaborate with cross-functional teams including IT, operations, compliance, and legal to support their cybersecurity needs and requirements. Provide technical leadership and guidance to junior team members.

Qualifications:

1. Education: Bachelor's degree in computer science, information technology, cybersecurity, or a related field. Advanced degree or relevant certifications such as CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) are highly desirable.

2. Experience: 5+ years of experience in cybersecurity or a related field, with a proven track record of leading and executing cybersecurity initiatives in enterprise environments.

3. Technical Skills:

   • Deep understanding of cybersecurity principles, concepts, and technologies.
   • Expertise in security tools and technologies such as firewalls, IDS/IPS, SIEM, antivirus, etc.
   • Strong knowledge of networking protocols, operating systems, and applications.
   • Experience with vulnerability management tools and processes.
   • Proficiency in Microsoft Office applications (Word, Excel, PowerPoint, etc.).

4. Analytical Skills: Strong analytical and problem-solving skills, with the ability to analyze complex security incidents, vulnerabilities, and risks.

5. Communication Skills: Excellent written and verbal communication skills. Ability to communicate effectively with technical and non-technical stakeholders.

6. Leadership Skills: Proven ability to lead and mentor cross-functional teams, drive successful outcomes, and foster a culture of collaboration and innovation.