IT Security Analyst

To perform this job successfully, an individual must be able to perform each essential function satisfactorily. The requirements listed below are representative of the knowledge, skills, and abilities required.

Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

Responsibilities include up to and not limited to :

• Assesses and evaluates systems to identify weaknesses and assess risk; performs vulnerability testing.
• Experience with command line interface and some level of exposure to administering systems and services for various operating systems.
• Knowledge of security incident and event management, log analysis, network traffic analysis, malware investigation / remediation, SIEM correlation logic, and alert generation.
• Knowledge of SIEM solutions such as RSA Security Analytics, ArcSight, LogRhythm, QRadar, Splunk, Microsoft Sentinel or similar.
• Reviews security violation reports or logs, investigates possible security exceptions, and coordinates with internal teams or external agencies as needed, including managed service providers.
• Assists in the creation and implementation of security solutions, which may include conducting vendor risk assessments.
• Implements new or upgraded security measures or controls, and documents system or process changes.
• Coordinate the development and delivery of security awareness programs and educate staff about security risks and opportunities.
• Demonstrated ability to analyze, triage, and remediate security incidents.

Minimum Requirements :

• Bachelor’s Degree and 3+ years of security-related experience in areas such as intrusion detection, incident response / handling, vulnerability management, etc.
• Understanding of Security principles, techniques, and technologies such as SANS Top 20 Critical Security Controls and OWASP Top 10.
• Moderate knowledge of networking fundamentals (TCP / IP, Network Layers, etc.).
• Moderate knowledge of malware operation and indicators.
• Moderate knowledge of the current threat landscape (threat actors, APT, cyber-crime, etc.).
• Moderate knowledge of security-related technologies and their functions (IDS, IPS, EDR, IRP, FW, WAF, SIEM, etc.).
• Moderate protocol analysis experience (Wireshark, tcpdump, Netwitness, Snort, Bro, etc.).
• Basic knowledge of audit requirements (PCI, HIPPA, SOX, etc.).
• Basic programming skills in various disciplines including scripting languages.
• Proficient skill of Microsoft Excel, basic skill of Microsoft Word, PowerPoint, and Outlook.
• Exceptional organization skills and flexibility working in a fast-paced setting.
• Remarkable customer service skills : good listener, excellent follow-up, and willing to support and help others.
• Japanese or German knowledge is a plus.

Certifications :

• Certified Incident Handler (GCIH)
• Certified Information Systems Security Professional (CISSP)
• Microsoft Certified Azure Security Engineer (AZ-500)
• Certified in Cybersecurity (CC)
• Systems Security Certified Practitioner (SSCP)
• Certified Cloud Security Professional (CCSP)

Work Environment :

General office environment will be experienced. There will be periodic exposure to manufacturing environments which may present possible hazards such as noise, electricity, chemicals, heavy equipment, and other automated and manual machinery.

Physical Demands :

Frequent : Sitting at desk, utilizing computers and phones. Repetitive hand, wrist, arm, and shoulder movements.

Periodic : Standing, walking, bending, and stooping.

Occasional : Business travel. Lifting, pushing, and pulling objects.