Cyber Security Analyst
Location : Remote (USA)
Job Description
Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers.
Participate in application and infrastructure projects to provide security-planning advice.
Hands on experience with the ability to refine baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation, and identity and access management (IAM)
Direct experience on security configurations, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systems.
Ability to execute and leverage SIEM platform for conducting forensic security investigations and identifying potential indicators of compromise (IOCs). Develop and use advanced, customized tools and scripts to enhance security assessments and proactive alerting.
Review all security reports and logs for unusual or anomalous activities.
Review all existing and new security technologies, tools and services, and make recommendations to the broader infrastructure team.
Participated and have led information security related incident response activities.
Stay abreast of information security events, news, trends and evolving legislative/regulatory changes.
8+ years hands-on network administration having following skills:
Direct, hands-on experience or strong working knowledge of managing security infrastructure - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, DLP (Data Loss Prevention) and log management technology.
Direct experience managing and working with Security Operations Centers
Direct, hands-on experience or a strong working knowledge of vulnerability management tools
Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services.
Scripting PowerShell, Python, Bash, etc.
Nice to have
CI/CD pipeline DEVSECOPS experience.
Cloud experience (AWS/Azure)
Regulations, Standards and Frameworks