Senior Analyst

Job Description

Project Role: Senior Analyst - Cyber Defense & Resilience

Project Role Description: Support and enhance the organization's cybersecurity posture by identifying, analyzing, and mitigating cyber threats. Work closely with cross-functional teams to ensure the continuous protection of critical business assets and the development of resilience strategies in the event of security incidents.

Key Responsibilities:

• Cyber Threat Analysis and Incident Response: Monitor, identify, and respond to security threats and incidents across the organization's infrastructure. Perform detailed analysis to understand the nature of the threats and coordinate responses.
• Vulnerability Management: Conduct vulnerability assessments and penetration testing to identify security weaknesses. Collaborate with teams to remediate and mitigate these vulnerabilities to enhance the organization's security resilience.
• Security Operations: Maintain and optimize cybersecurity tools and technologies such as SIEM (Security Information and Event Management), intrusion detection systems (IDS), and firewalls. Ensure effective implementation of security measures across the enterprise.
• Security Policy and Compliance: Assist in developing, implementing, and reviewing cybersecurity policies, processes, and standards to ensure compliance with industry regulations and best practices (e.g., ISO 27001, NIST, GDPR).
• Threat Intelligence and Reporting: Collect, analyze, and share cyber threat intelligence to provide proactive defense mechanisms. Generate regular reports on the security posture, incidents, and threat landscape for senior management.
• Security Awareness: Support the development and implementation of security awareness programs for employees, educating them on current threats, phishing attacks, and safe cybersecurity practices.
• Collaboration and Coordination: Work closely with internal teams such as IT, legal, and operations to ensure cohesive cybersecurity strategies. Assist with cross-functional teams to assess and address cybersecurity risks.
• Resilience Planning: Contribute to disaster recovery and business continuity planning by ensuring that appropriate resilience strategies are in place in case of a cybersecurity breach or incident.
• Continuous Improvement: Stay updated on emerging cybersecurity threats and industry trends. Continuously improve security processes, tools, and capabilities to stay ahead of new attack vectors.

Skills Required:

• Cybersecurity Knowledge: Strong understanding of cybersecurity principles, best practices, and risk management frameworks.
• Threat Analysis & Incident Response: Hands-on experience with threat detection, incident response, and the use of cybersecurity tools such as SIEM, IDS/IPS, and vulnerability scanners.
• Security Protocols & Standards: Familiarity with industry security standards (ISO 27001, NIST, CIS, GDPR) and compliance regulations.
• Network Security: Experience with network security tools and techniques (firewalls, VPNs, network monitoring).
• Problem-Solving Skills: Strong analytical and troubleshooting abilities to identify and resolve security incidents quickly.
• Communication Skills: Excellent written and verbal communication skills to report on incidents and interact with stakeholders.
• Resilience & Recovery Knowledge: Understanding of disaster recovery, business continuity, and cybersecurity resilience planning.
• Collaboration Skills: Ability to collaborate effectively with cross-functional teams to address cybersecurity challenges.

Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• Relevant cybersecurity certifications such as CISSP, CISM, CISA, or CompTIA Security+ are highly preferred.

Experience:

• Minimum of 4-6 years of experience in cybersecurity, with a focus on threat analysis, incident response, and risk management.
• Experience in working within a SOC (Security Operations Center) or a similar cybersecurity-focused environment is desirable.