Cyber Security Analyst
Current• Conduct real-time 24/7 security monitoring and intrusion detection analysis for all KPI networks, servers, cloud platforms, and endpoint (laptop, desktop, mobile, and internet of things/IOT) systems.• Support client deployments by participating in security reviews for client solutions, partnering with clients and KPI project teams to establish security protocols, and training field teams to perform and remediate vulnerability assessments.• Research emerging threats and vulnerabilities… Show more • Conduct real-time 24/7 security monitoring and intrusion detection analysis for all KPI networks, servers, cloud platforms, and endpoint (laptop, desktop, mobile, and internet of things/IOT) systems.• Support client deployments by participating in security reviews for client solutions, partnering with clients and KPI project teams to establish security protocols, and training field teams to perform and remediate vulnerability assessments.• Research emerging threats and vulnerabilities to aid in the identification and analysis of network incidents, and support the creation or improvement of security controls, policies, and standards.• Provide incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary.• Correlate events and activities across systems to identify trends of unauthorized use.• Review alerts and data from sensors and document formal, technical incident reports.• Test new systems and manage cybersecurity risks and remediation through analysis.• Validate and maintain incident response plans and processes to address potential threats.• Compile and analyze data for management reporting and metrics.• Monitor relevant information sources to stay up to date on current attacks and trends.• Analyze potential impact of new threats and communicate risks.• Perform root-cause analysis to document findings and participate in root-cause elimination activities as required.• Monitor threat intelligence feeds to identify a range of threats, including indicators of compromise and advanced persistent threats (APTs).• Identify the tactics, techniques, and procedures (TTPs) of potential threats through the MITRE ATT&CK or similar frameworks.• Participate in the creation of enterprise security documents under the direction of the IT Security Manager, where appropriate.• Maintain and audit user accounts and licenses, asset records, support tickets, and administer cyber security training. Show less