Job Title: Lead Cybersecurity Analyst Location: Remote Hiring a Lead Cybersecurity Analyst for our Cybersecurity Operations team.In this role, your primary responsibilities will be overseeing daily cybersecurity operations and leading cybersecurity incident response activities. This includes architecting and supporting the cybersecurity operations center (CSOC) technology portfolio and cybersecurity risk management program. This position is also expected to lead efforts that help mature the cybersecurity operations program, capabilities, and processes. You will be expected to serve as a mentor to the team, and to provide input into the overall cybersecurity program and strategy. You will work closely with other IT departments and key stakeholders to deliver solutions that meet business needs and provide consulting services to reduce risk for cyber assets, identify emerging threats and technologies, and help set technical standards for the department and company. What you will do:Lead incident response efforts, such as responding to identified malicious activity or highly critical vulnerabilities that pose a threat to the organization.Onboard data, configure integrations, and setup security alerting for the security information and event management (SIEM) solution, which includes parsing and analyzing large, complex data sets and integrating into the security case management system.Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security, and data networking, to offer global solutions for a complex heterogeneous environment.Responsible for the continuous maturity of monitoring and incident response capabilities.Stay current with, and remain knowledgeable, about new threats. Analyze attacker tactics, techniques, and procedures (TTPs) from security events across a large heterogeneous network of security devices and end-user systems.Conduct cyber investigations including suspicious files analysis across applications, networks, and endpoints, including memory and disk forensics, to determine maliciousness. Analysis requires knowledge of traditional malware, but also repurposed files that are not malicious, as well as targeted malware and zero-day attacks.Acts as primary security resource for strategic initiatives by providing security reviews and mitigation recommendations that address concerns going forward.Provides leadership for cyber team including setting standards, identifying emerging threats, mentoring team on how to mitigate risks, and collaborating with business and IT resources.Promotes strategic comprehensive planning by identifying advocating for security solutions or practices that substantially reduce the cyber risk of organization.Engages in other duties as needed that support Client’s Values and helps deliver on our Purpose to serve customers and build stronger communities.
