Description
The Senior Cyber Security Analyst will be responsible for ensuring security controls managed and maintained aligning with vendor recommendations, CIS benchmarks and Microsoft Best Practices.
What will you do?
- Manage and maintain security controls.
- Assess information risk and facilitate remediation of identified vulnerabilities within the network, systems, and applications.
- Perform vulnerability assessments as assigned utilizing IT security tools and methodologies.
- Perform assessments of the IT security/risk posture within the IT network, systems, and software applications, in addition to assessments within the Vendor Management Program.
- Work directly with the organization's security partners.
- Develop, document and test security readiness, verifying configurations, and documentation of procedure manuals.
- Promote awareness of applicable regulatory standards, upstream risks, and industry best practices across the organization.
Some things that would impress us:
- 7+ years' experience working in an IT environment; experience in administering IT security controls in an organization as well as knowledge of technical infrastructure, networks, applications, and systems.
- Certified Information Systems Security Professional (CISSP), or related certification.
- Advanced skills and/or certification in Cyber Security principals, ITIL Foundations, and COBIT Governance.
- Advanced skills and/or certification Microsoft Enterprise systems.
- In depth knowledge of M365 Security, Microsoft Azure Security, Windows Enterprise environments, Windows operating systems.
- Strong understanding of adversary tactics and techniques including the MITRE ATT&CK framework.
- Strong blue team skills including system security, system auditing, threat intelligence, incident handling and detection.