Cybersecurity Analyst

Purpose Statement:  The Cybersecurity Analyst is responsible for daily monitoring and response of cybersecurity events and customer support. This role will collaborate with others to detect and respond to cybersecurity incidents, while maintaining and following procedures for cybersecurity monitoring and incident response escalation. Additionally, this role will monitor and analyze security events on the network and endpoints through various security tools. The Cybersecurity Analyst also supports the administration of cybersecurity tools & resolution of customer requests related cybersecurity tools or incidents. The Cybersecurity Analyst should have familiarity with the principles of network and endpoint security, current threat and attack trends, and a working knowledge of security principles such as defense in depth.

Key Job Accountabilities:

• Perform initial analysis and investigation into security alerts from cybersecurity tools and incident tickets upon arrival in the global ticketing system. Triage events and investigate to identify security incidents and escalate as part of the incident response process, as applicable.
• Partner with cross functional teams to investigate, document, and resolve cybersecurity incidents & customer requests. Meet customer SLA by monitoring ticket queue to analyze, troubleshoot, and solve problems. Investigate removable media usage and determine valid business need to reduce risk.
• Support ongoing data-loss-prevention initiatives to include data monitoring & data investigations. Support ad-hoc data and investigation requests & review of phishing email submissions.
• Provide support in the administration of cybersecurity tools (including, but not limited to: data loss prevention; anti-virus/malware; secure file share; endpoint encryption; email security).
• Maintain knowledge of cybersecurity best practices and emerging technology, including frameworks and regulations & current threat trends. Develop, maintain, and assist in the enforcement of policies, procedures, knowledge base articles, & security baselines.

Education/Experience Qualifications:

• Requires a Bachelor's degree. Typically requires 0-2 years of related experience.

Other Qualifications:  

• Experience in technical support or help desk work, preferably in a manufacturing setting.
• Exposure to DLP, Anti-Virus, SIEM, EDR, Vulnerability Scanners and other cybersecurity tools a plus.
• Basic understanding and/or working experience with Active Directory & Windows or Linux system administration.
• Basic understanding and/or working experience with network services and devices, the OSI model, and TCP/IP protocols
• Ability to comprehend fundamental cybersecurity principles and apply them practically

Physical Requirements:  

• Professional office environment with suitable lighting, comfortable temperatures, and low noise level. May require prolonged periods of sitting at a desk, using a computer, and other office equipment. Minimal physical activity is generally involved, emphasizing the importance of good posture and ergonomic workplace arrangements.

Travel Requirements:  

• N/A

This document does not represent a contract of employment and is not intended to capture every possible assignment the incumbent could be asked to perform.