Cyber Security Analyst

A Cyber Security Analyst is responsible for analyzing, detecting, monitoring, and responding to cyber threats that target the organization's infrastructure and operational technology (OT) systems.

The Cyber Security Analyst works closely with the IT (Information Technology) and OT teams to ensure the security and resilience of the organization's critical assets and services.

The Cyber Security Analyst also provides guidance and support on cyber security best practices, policies, and standards.

Duties and Responsibilities :

• Execute penetration tests, vulnerability assessments, asset scans, and web security evaluations, followed by the implementation of corrective actions to address identified vulnerabilities.
• Administer and deliver user awareness training sessions, including periodic phishing campaigns, to enhance security awareness among users.
• Collaborate with various teams to evaluate and address vulnerabilities in unpatched systems, ensuring the development and implementation of effective processes to mitigate security risks and prevent breaches.
• Analyze and assess the cyber security posture and risks of the organization's infrastructure and OT systems using various tools and techniques.
• Identify and respond to cyber security incidents and events according to the incident response plan and procedures.
• Monitor and report on the cyber threat landscape and emerging trends, providing recommendations for mitigation and improvement.
• Conduct vulnerability scans, penetration tests, and remediate or escalate findings as appropriate.
• Implement and maintain cyber security controls and solutions, including firewalls, antivirus, encryption, and backup solutions.
• Perform cyber security audits and assessments to ensure compliance with relevant standards and regulations.
• Develop, update, and communicate cyber security policies, procedures, and documentation, providing training and awareness to IT and OT staff and users.
• Collaborate and communicate with internal and external stakeholders, including management, vendors, and regulators, on cyber security matters.
• Flexibility to work non-standard hours as needed, including evenings, weekends, and holidays.
• Performs all other duties as assigned.

Minimum Job Requirements :

Education / Certifications and Experience :

• Associates or Bachelor’s Degree in Cybersecurity, Information Assurance, or a related field.
• At least 2 certifications that include Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Professional (CSP), CompTIA Security+ Certified, CYSA+, Certified Ethical Hacker or Information Security and Assurance Certificate.
• At least 1 years implementing security strategies, procedures and policies that mitigate the risk of security breaches and / or attacks (both internally and externally)
• At least 1 years of experience reviewing and remediating security vulnerabilities.
• At least 2 years of Network or System Admin experience.
• Direct experience with active directory, web services, network protocols, applications, databases, back-up techniques and technologies.

Knowledge, Skills, and Abilities :

• Proficiency in cyber security frameworks and standards, including NIST, ISO, and IEC.
• Familiarity with a variety of cyber security tools and technologies, such as SIEM (Security Information and Event Management), IDS / IPS, NAC, and VPN (Virtual Private Network).
• Understanding of infrastructure and OT systems and protocols, including SCADA, PLC (programmable logic controllers), and DCS.
• Exceptional troubleshooting skills for efficiently identifying and resolving issues.
• Effective engagement with diverse teams and stakeholders, spanning entry-level to executive-level positions.
• Strong multitasking abilities, adept at managing multiple tasks with varying deadlines.
• Attention to detail and strong organizational skills to ensure thoroughness and accuracy.
• Professional demeanor and polished communication skills, whether interacting over the phone or in person.

Supervisory Responsibilities :

N / A

Working Conditions and Physical Effort :

• Typical work in office environment.
• Must be able to lift and carry up to 25 pounds at times.
• Prolonged periods of sitting at a desk and using a computer that may require repetitive tasks, such as data entry and report generation.
• Travel on an as-needed basis, which may vary depending on business requirements.

Expectations :

Will demonstrate, promote, and exemplify the Company’s Core Values in People, Quality and Growth.

We are proud to offer competitive compensation and benefit programs that include medical, dental, vision, flexible savings account, health savings account, 401K matching savings plan, employee assistance program, wellness programs, life insurance, AD&D insurance, disability insurance, tuition reimbursement, student loan counseling, employee referral program, paid time off, and more!

C.H. Guenther & Son and its subsidiaries are E-Verify participating employers.

All offers of employment are contingent upon successful completion of the pre-employment screening process which includes a drug screen and review of criminal background and other records as required.

AA / EEO / Drug-Free Employer