Security Analyst

Company Overview
Metrea is a defense company dedicated to translating commercial innovation into solutions for the hardest problems in national security. With deep mission expertise, Metrea focuses on delivering effects as-a-service across a spectrum of domains including Air & Space, Electromagnetic & Cyber, and Synthetic. Metrea Management provides central services to eleven (11) global capability units via Operations, Solutions, Strategy, Legal, and Finance teams. 

Capability Unit 

Metrea Management is our global shared service providing support for the Capability Units (CU) in areas such as People, Finance, Legal, Strategy and Information Technology. 

Position Summary
Metrea’s Platform Technology Team is searching for a results-oriented Security Analyst with a deep understanding of the M365 technical and security capabilities. Aerospace industry experience would be ideal. Primary responsibilities are focused on cybersecurity analytics, evaluating events and logs that are generated by the infrastructure and security tools. Further responsibilities include threat hunting, software security and risk assessment, vulnerability management, testing and optimization of security events and dashboards. The position will require a strong technical background and good understanding of general cybersecurity events and tables, coupled with the ability to interact with all levels of personnel. As a member of the security operations team, we drive to be part of a security-conscious culture, collaborating closely with engineers, developers and executives to create a security infrastructure built on the highest quality of standards that is to be tested and reported to meet regulatory expectations.

Reasonable Accommodations Statement
To perform this job successfully, the individual must be able to perform each duty listed below satisfactorily. Reasonable accommodation may be made to enable qualified individuals with disabilities to perform the essential functions.

Essential Functions Statement:

• Work closely with the security and operations team to develop and enhance cybersecurity needs to the overall infrastructure.
• Review and manage the security dashboards for suspicious activities.

• Continuous monitoring of enterprise security systems, SIEM and other tools to support incident and response protocols.
• Analyze logs from various sources to support the development of security alerts.
• Investigate and respond to incidents and alerts generated from Metrea’s security stack.
• Conduct periodic threat analysis and hunting to identify emerging threats and proactively remediate emerging vulnerabilities.
• Generate and review security reports for senior management.
• Support our Security Awareness Training efforts by researching evolving phishing payloads for simulation testing activities within the environment. 
• Support the generation of Simulation Testing reports across the enterprise as needed for senior management.
• Support the evaluation and improvement of cybersecurity policies and procedures.

• Work closely with the IT Operations team to support the vulnerability management program and remediation activities including software updates and patch management activities.

• Capable of identifying, prioritizing, strategizing and mitigating risks associated across the enterprise.
• Staying current with emerging security threats, technologies and trends to develop and implement cybersecurity awareness programs, promoting a culture of security within Metrea.

 Competency Statements

• Self-motivated; team oriented; responsible, and reliable.
• Positive attitude and proactive style. Candidate must have the ability to work in a structured, yet variable environment.
• Knowledge of incident and response as well as forensic analytics and investigation methodology. 
• Knowledge of network security protocols and endpoint protection methodologies.
• Familiar with threat intelligence, threat analytics and threat hunting techniques.
• Expertise in using SIEM to aggregate, analyze and respond to security events and alerts.
• Capable of documentation writing and supporting the development and implementation of cybersecurity policies and procedures.
• Ability to analytical and systematically breakdown complex problems and develop solutions.
• Capable of communicating and conveying technical information to a broad audience.
• Promote a collaborative environment to foster teamwork and team building.
• Keeping current and actively conduct cybersecurity threats and vulnerabilities assessment.
• Ability to create technical specifications and documentation.
• Strong analytical skills.
• Good grasp of systems from “big picture” integration perspective.
• Expertise in MS Office suite.  Visio experience would be a plus.
• Ability to manage multiple tasks with attention to detail and accuracy.
• Must be organized, focused and able to deliver under tight timelines.
• Excellent interpersonal, written, and verbal communications skills, with the ability to interact with various levels of personnel, including end users, management, and developers.

Supervisory Responsibility
This role currently does not have any supervisory responsibilities.

Work Environment
Work will primarily be remote.  If any onsite visits are required, then this job operates in a clerical office setting.  This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. 

Position Type and Expected Hours of Work
This is a full-time position. Typical working hours of Monday through Friday, 9:00 a.m. to 5:00 p.m. EST, which may vary. Hours and work shifts may change in accordance with department and business needs. Exempt employees must have the ability to be on-call and available outside of typical working hours, as business needs require. 

Facility Location 

Primarily Remote
 
Required Education, Experience and Certificates
Education: Bachelor’s Degree
Experience: 3+ years of experience:

• Software security and risk assessment
• M365 Sentinel
• M365 Intune
• M365 Security stack

Preferred Education, Experience and Certificates
Certificates: NA

Additional Eligibility Qualifications
Must be able to accomplish any and all duties with minimal assistance.
Must have excellent command of the English language; oral and written.

Work Authorization/Security Clearance
Employee must be a US citizen or Green Card holder.
 
AAP/EEO Statement
Metrea is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law.
 
Other Duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.