Analyst I, Cybersecurity

Job Summary:

At Estes Express Lines, where our mission is to facilitate frictionless shipping experiences for our customers, we embrace innovation to transform the industry. Our engineers play a pivotal role in researching and uncovering new opportunities to strengthen the foundation of our digital products, all aimed at delivering an effortless customer experience. The Cybersecurity Analyst I will be at the forefront of ensuring the reliability and security of the organization's diverse technologies. Our Analysts will focus on lifecycle management, product recommendations, patch management, proactive threat detection and response, as well as reliability and resilience across technologies. Together, we are committed to building and delivering an exceptional customer experience, making shipping frictionless for employees and customers alike.

• Assists in digital evidence collection and forensic analysis to support incident response.
• Contributes to the continuous improvement of cybersecurity operations through participation in incident response playbook enhancements, post-incident reviews to distill lessons learned, and maintenance of regular security assessments and updates.
• Identifies automation opportunities to enhance cybersecurity capabilities and proactively addresses trends that may negatively impact stakeholders.
• Conducts investigations into security incidents such as malware infections, phishing attempts, and unauthorized access; Monitors the threat landscape to identify and assess emerging threats and vulnerabilities.
• Analyzes attack vectors and understands threat actor techniques to compromise systems and data.
• Develops knowledge in using SIEM tools, with potential for further development and maintenance of detections.
• Understands threats and risks related to the transportation and logistics industry.
• Engages in training and exercises to maintain team proficiency.
• Supports network investigations to mitigate potential security risks and intrusions.
• Fosters partnerships and collaborates with internal and external teams to enhance cybersecurity measures.
• Strengthens application security by implementing best practices in software development and deployment.
• Ensures robust cloud security protocols are in place to protect organizational data across various platforms.
• Enhances mobile security to safeguard against unauthorized access and threats on mobile devices.
• Advises on comprehensive data security strategies to ensure the integrity and confidentiality of sensitive information.
• Participates in the assessment of third-party vendors and service providers to ensure compliance with security standards.
• Coordinates, schedules, and manages penetration testing, vulnerability assessments, phishing simulations, and social engineering tests to identify potential security weaknesses.
• Regular attendance is required.
• This is not an all-inclusive list of job requirements and/or duties and may not contain all mental and physical capabilities necessary to perform the job at all times due to circumstances. Operational, safety and other needs may require the employee to perform any and all other duties as assigned. Employees are expected, and must be able to perform all such duties and tasks.

Qualifications:

• Bachelor’s degree in computer science, information technology, cybersecurity, or a related field is preferred.
• 1 year of experience in cybersecurity or related IT roles, preferred.
• Basic knowledge of SIEM tools and the cybersecurity threat landscape, required.
• Understanding of ICS and OT security principles and cloud security best practices, required.
• Ability to work effectively with cross-functional teams and customers, required.
• Good planning and organizational skills, with the ability to manage multiple priorities, required.
• Understanding of the MITRE ATT&CK Framework and ability to apply it in practical scenarios, required.
• Strong communication skills, both written and verbal, and the ability to collaborate cross-functionally, required.
• Resourceful and self-motivated, with the ability to work independently when necessary, required.
• Analytical and critical thinking skills, with a demonstrated commitment to customer service, required.
• Familiarity with digital forensics, incident response, and playbook development, required.
• Basic knowledge of application, cloud, mobile, and data security practices, preferred.
• Experience in conducting security assessments of third-party vendors and service providers preferred.
• Proficiency in coordinating and managing security testing activities, including penetration testing and vulnerability scanning, preferred.
• Demonstrated ability to develop and execute security testing schedules and maintain up-to-date security measures, preferred.
• Must be able to lift approximately 20 lbs., or more if required by the essential functions of the job.
• Must be able to comply with all company policies, rules, procedures and Code of Conduct
• Must be able to interact well with others
• Must be able to work independently, or in a team setting
• Must be capable of working under tight time constraints in a high volume environment with multiple priorities
• Responds well to questions; Ability to read, interpret and comply with written information and documents such as safety rules, operations / procedure manuals and maintenance instructions with a high comprehension and concentration level to include the ability to meet deadlines
• Must pass a pre-employment drug screen, random drug and/or alcohol tests, and will be subject to a criminal history background check
• Must be authorized to work in the United States

Physical Demands:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to talk or hear. Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception and ability to adjust focus. The employee is frequently required to sit and use hands to finger, handle, or feel or operate computers and other standard office equipment. The employee is occasionally required to stand, walk, lift, twist, turn and reach with hands and arms. The employee must be capable of lifting a minimum of 20 lbs., or more if required by the essential functions of the job.

Work Environment:
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The noise level in the work environment ranges from quiet to loud as required by the essential functions of the job.

Estes values a diverse workforce and affirmatively promotes a company culture that embraces the concept that outcomes are improved when our workforce is made up of people with different viewpoints. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran or any other characteristic protected by law. Come find your new career at Work4Estes.com! Applications are accepted online only through this website. If you need an accommodation to apply, call the number on the website.