Cybersecurity Analyst - Level III

The incumbent will be responsible for monitoring, identification, and analysis of events generated by technical security controls, conducting vulnerability assessments, and responding to security incidents.

POSITION SUMMARY:

The incumbent will be responsible for monitoring, identification, and analysis of events generated by technical security controls, conducting vulnerability assessments, and responding to security incidents. Assisting senior team members with execution of basic moves, adds and changes (MAC) to support the secure operation of IT & OT environments.

This role requires a strong understanding of cybersecurity principles, threat intelligence, and incident response. This entails ensuring relevant risks are identified and adequate responses are put in place to maintain the confidentiality, integrity, and availability of the organization’s information assets. The Cybersecurity Analyst is the first level of support for cybersecurity issues and performs triage to determine their severity and urgency.

EDUCATION/SPECIALIZED TECHNIQUES

1. Bachelor’s degree in Computer Science or its equivalent
2. Certification in Security+ and Network+
3. CEH certification would be an asset
4. Certification or Training in Cloud Security would be an asset
5. Working understanding computer hardware, software, operating systems, and networking concepts.
6. Grasp core security concepts like confidentiality, integrity, availability, and common attack types.
7. Familiarity with identifying and assessing vulnerabilities in systems and applications.
8. Ability to analyze logs from various security systems and devices to identify potential threats and anomalies.
9. Excellent problem-solving and analytical skills to troubleshoot and resolve network/security issues.
10. Strong communication and interpersonal skills to collaborate effectively with cross-functional teams.
11. Ability to prioritize and manage multiple projects simultaneously, meeting deadlines and delivering high-quality results.
12. Knowledge of project management methodologies and tools for planning and executing system integration projects.
13. Continual learning mindset to stay updated with emerging trends and advancements in cyber-attack methodologies and countermeasures.

EXPERIENCE/LEARNED DISCIPLINE

1. A minimum of three (3) years of experience in Cyber Security
2. Familiarity with frameworks such as NIST, ISO 27001, and CIS Controls
3. Sound knowledge of computer systems and architecture, computer networking, digital communication protocols and computer hardware and operating systems.
4. Experience developing and executing Security Awareness programs
5. Experience performing Vulnerability Assessments and prioritizing remediation activities
6. Ability to use system and network administration utilities, management and monitoring tools
7. Knowledge of project management methodologies and tools for planning, executing, and documenting system integration projects. 

ELEMENTS OF MAJOR DUTIES

1. Monitor security alerts and events using security information and event management (SIEM) tools.
2. Conduct real-time analysis of security alerts and incidents, including malware detection, network anomalies, and unauthorized access.
3. Investigate and analyze security incidents to determine the root cause and impact.
4. Develop and execute incident response plans to contain and mitigate security threats.
5. Provide detailed reports on incident findings, including recommendations for improvement.
6. Conduct regular vulnerability assessments to identify potential weaknesses.
7. Collaborate with IT teams to prioritize and remediate identified vulnerabilities.
8. Stay informed about the latest cybersecurity threats, vulnerabilities, and exploits.
9. Incorporate threat intelligence into security monitoring and incident response activities.
10. Assist in the development and implementation of security awareness programs for employees.
11. Provide training and guidance on best practices for maintaining a secure computing environment.
12. Ensure compliance with industry regulations and standards.
13. Participate in security audits and assessments, implementing corrective actions as needed.
14. Maintain detailed documentation of security incidents, investigations, and remediation activities.
15. Contribute to the development and updating of security policies and procedures