Intern - Cybersecurity Analyst

Cincinnati, Ohio, United States

Internship Mid-level / Intermediate

KPI Solutions

View all jobs at KPI Solutions

Apply now Apply later

Posted 2 days ago

The purpose of this Intern position is to provide critical technical expertise in the detection, analysis and response to cybersecurity events. The Cybersecurity Analyst will be responsible for early and accurate detection, prevention, response, containment, and guidance to remediation of threats directed against KPI and KPI clients on a 24/7 basis. The analysis is conducted through architecture reviews, technology risk assessments, data analytics tools, business processes reviews and by collaborating with KPI business units, vendors, and clients to constantly improve the overall security of KPI and KPI client solutions.

Conduct real-time 24/7 security monitoring and intrusion detection analysis for all KPI networks, servers, cloud platforms, and endpoint (laptop, desktop, mobile, and internet of things/IOT) systems.
Support client deployments by participating in security reviews for client solutions, partnering with clients and KPI project teams to establish security protocols, and training field teams to perform and remediate vulnerability assessments.
Research emerging threats and vulnerabilities to aid in the identification and analysis of network incidents, and support the creation or improvement of security controls, policies, and standards.
Provide incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary.
Correlate events and activities across systems to identify trends of unauthorized use.
Review alerts and data from sensors and document formal, technical incident reports.
Test new systems and manage cybersecurity risks and remediation through analysis.
Respond to computer security incidents according to the computer security incident response policy and procedures.
Provide technical guidance to first responders for handling information security incidents.
Communicate investigation findings to relevant business units to help improve the information security posture.
Validate and maintain incident response plans and processes to address potential threats.
Compile and analyze data for management reporting and metrics.
Monitor relevant information sources to stay up to date on current attacks and trends.
Analyze potential impact of new threats and communicate risks.
Perform root-cause analysis to document findings and participate in root-cause elimination activities as required.
Understand data automation and analysis techniques.
Use judgment to form conclusions that may challenge conventional wisdom.
Anticipate new threats and indicators of compromise.
Monitor threat intelligence feeds to identify a range of threats, including indicators of compromise and advanced persistent threats (APTs).
Identifies the tactics, techniques, and procedures (TTPs) of potential threats through the MITRE ATT&CK or similar frameworks.
Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the IT Security Manager, where appropriate.
Maintain and audit user accounts and licenses, asset records, support tickets, and administer cyber security training.

Requirements

BS/BA in Computer Science, Electrical Engineering, or related field. Equivalent experience will be considered.
Progressive experience characterized by a high level of service, employee engagement and a culture of accountability preferably in software, automation, or logistics industry.
Must be able to build relationships and efficiently establish trust.
Natural self-starter, decisive, high energy and positive attitude.
Strong organizational and project management skills.
Demonstrates high ethical and professional standards.
Excellent communication both oral and written communication and demonstrated skill to work with all levels of employees.

Any of the below skills are a plus: