Cyber Security Analyst #104152

Direct Hire

No C2C rates

Will start remote until restrictions are lifted then travel to Dover or Newark, DE. 

This position will be responsible for protecting the corporation’s critical information and assets by ethically integrating cybersecurity risk management best practices throughout the enterprise.   This position will be responsible for detection and analysis of opportunistic and persistent threats, deploying counter measures and conducting risk and vulnerability assessments across the enterprise.  As a specialist on the Cyber security team, you will participate in detection and response of cyber incidents, assist in recovery of operations and assist in formulating, updating, and communicating short- and long-term organizational cybersecurity strategies and policies. In addition, you will provide technical support to others on adjacent technical teams and the greater organization.  The ideal candidate will have a thorough understanding of the relevant incident response steps, as well as knowledge of various security architectures and frameworks (Zero Trust, SABSA).

Primary duties and responsibilities include: 

• Monitor and analyze security intel generated by company security controls.  Develop TTPs and lead triage, containment and eradication.
• Participate in threat hunting activities and “deep dive” analysis to maintain a high degree of awareness on the current threat landscape
• Provide effective incident response, by correlating intelligence from IPS systems, endpoints and third parties.
• Administer security awareness training and enterprise vulnerability management solutions, as required.
• Administer and maintain leading enterprise commercial endpoint and network based security solutions
• Develop and produce reports on all activities and incidents to help maintain day to day status,
• Develop and report on trends, and provide focus and situational awareness on all issues.
• Maintain documentation for all systems and create user guides and standard operating procedures.
• Adhere to enterprise change management procedures and corporate security policies.
• Responsible for tuning and filtering of events and information, creating custom views and content using all available tools following an approved methodology and with approval and concurrence from management.
• Maintain system baselines and configuration management items, including security event monitoring “policies” in a manner determined and agreed to by management.
• Ensure changes are made using an approval process agreed to in advance.
• Produce reports identifying significant or suspicious security events to appropriate parties.  Include latest security threat information and tie back to specific intrusion sets of nation state actors when possible.

·       Maintain knowledge of the current security threat level by monitoring related Internet postings, Intelligence reports, and other related documents as necessary.

·       Maintain proficiency and skills through relevant training, conventions, conferences, and on-the-job training.

·       Interface to third party vendors as necessary for external audits.

·       Manage investigations involving Cyber Security, including the use of specialized software.

·       Create system performance metrics and trending for capacity planning

·       Meet availability and update requirements

·       Ability to travel 20%