PURPOSE OF POSITION: The Cyber Security Analyst is a technical position within the 5Q Security Operations Team.
The primary responsibility of this position is to monitor cyber threats for 5Q clients subscribed to the company’s SOCaas services.
This role works closely with the entire 5Q Cyber team on identifying and remediating cyber security risks and automating solutions to reduce our clients’ risk landscape through critical technical recommendations, solution guidance and technical support.
MAJOR RESPONSIBILITIES & ACCOUNTABILITIES
· Manage and administer a SIEM, develop reports and other capabilities to support the needs of our clients.
· Document work within a security operation ticketing system
· Identify data sources and analytics for inclusion into SIEM.
· Perform security tests and provide evaluations to Cyber leadership and engineering.
· Develop security policies, processes, and procedures.
· Develop and deliver presentations regarding 5Q’s SIEM and SOCaas services.
· STIG/Checklist auditing.
· Develop new signatures and correlated searches based on a variety of requirements
· Security monitoring, analysis, and incident response.
· Workload estimating
· Tracking and reporting of security patch/upgrade implementation
· Conducting security audits.
· Scheduling, execution and tracking of vulnerability remediation activities.
· Participate in the evaluation of security product trade studies.
· Information gathering, port and vulnerability scanning and analysis according to policy.
· Hold on-going education sessions with our partners and clients.
KNOWLEDGE AND SKILL REQUIREMENTS To perform this role successfully, an individual must be able to perform each essential duty satisfactorily.
The requirements listed below are representative of the knowledge, skill, and/or ability required.
· Experience with Cisco or Meraki Enterprise/Small Business switches, routers and firewalls is a plus
· Familiarity with implementing network security; network types; network media; routing and switching fundamentals.
Understanding of the TCP/IP and OSI models
· Conversant in IP addressing; WAN technologies; operating and configuring IOS devices; extending switched networks with VLANs; determining IP routes; managing IP traffic with access lists
· Basic knowledge of networking protocols and components including DNS, DHCP, routing etc.
· An understanding of virtual private clouds and multi-tenant environments
· Expertise in virtualized server environments on Hyper-V and VMware is a plus
· Ability to use Visio for network diagramming
· Knowledge of Microsoft related technologies: Windows Server, Active Directory, SQL, Exchange, Office 365, SharePoint and other Microsoft core business applications is a plus
· Familiarity with common industry best practices (ITIL, SDLC, AGILE)
· Basic knowledge in application architecture and middleware technology
· Security and IT Metrics experience a plus
· Experience with process automation and/or scripting (i.e.
XML, python) a plus
· Ability to effectively communicate technical information to non-technical audiences and ability to influence others to comply with policies / conform to standards and best practices Job Type: Full-time Pay: $55,000.00
– $60,000.00 per year Benefits: 401(k) 401(k) matching Dental insurance Flexible schedule Health insurance Life insurance Paid time off Referral program Tuition reimbursement Vision insurance Schedule: 8 hour shift Experience: Linux: 1 year (Preferred) Cybersecurity: 1 year (Preferred) Information security: 1 year (Preferred) Work Location: Multiple Locations