Analyst‚ Cybersecurity Cover Letter

I am excited to be applying for the position of analyst‚ cybersecurity. Please accept this letter and the attached resume as my interest in this position.

Previously, I was responsible for technical knowledge and analysis of information assurance, to include system engineering; risk management; system authorization, critical infrastructure continuity and contingency planning; security awareness and training.

My experience is an excellent fit for the list of requirements in this job:

• SANS GIAC Certifications, including Security+ and CISSP, CHFI, CCE, and CCFP
• Network product-based Certification, including CCNA, CCNP, or CCIE
• SANS GIAC Certifications, including Security+ and CISSP and CHFI, CCE, and CCFP Certifications
• Network product based Certification, including CCNA, CCNP, and CCIE
• Knowledge of computer network defense policies, procedures, and regulations and general attack stages, including footprinting and scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, and covering tracks
• Knowledge of incident response and handling methodologies, defense-in-depth principles, and network security architecture
• Knowledge of network device integrity concepts and methodologies
• Knowledge of how to monitor external data sources, including computer network defense vendor sites, computer emergency response teams, SANS, and security focus to maintain currency of computer network defense threat conditions and how to perform analysis of log files from a variety of sources, network traffic logs, firewall logs, intrusion detection system logs, and DNS logs to identify possible threats to network security

I submit this application to express my sincere interest in the analyst‚ cybersecurity position.

In my previous role, I was responsible for architectural / risk based analysis of information assurance / cyber security features and relate existing system to future needs and trends and requirements.

My experience is an excellent fit for the list of requirements in this job:

• Support cyber defense exercises to help improve detection and response capabilities
• Experience with NIST Cybersecurity Framework core standards and practices, COBIT 5 for Risk, and FAIR preferred
• Experience writing formal risk assessments and/or audit reports preferred
• Prior IT operational experience preferred
• Prior IT audit experience helpful
• Conducts risk assessments to identify risks to security and business resiliency controls
• Conducts desk reviews and inspection of security assessments for the Bank and/or Third Party Providers
• Facilitates and manages risk assessments and /or security initiatives from communication, approval and report distribution to key stakeholders, business units and management

I would like to submit my application for the analyst‚ cybersecurity opening. Please accept this letter and the attached resume.

In the previous role, I was responsible for subject matter expertise in characterization and analysis of information technology (IT) and operational technology (OT) networks.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Strong understanding of cybersecurity architecture and controls
• Know DoD and Navy IT Practices to participate in a broad array of system concept & design efforts this includes legacy IA and the new RMF process in support of the USS SECURE Cyber Initiative
• Have worked in a cross-SYSCOM, system-of-systems cyber security test environment
• Assessed cyber security capabilities and risks at the system, enclave, cross-enclave, platform and strike group level
• Support cross-SYSCOM cybersecurity collaboration efforts throughout the acquisition lifecycle
• Conduct Gap – Testing to support system-of-systems (SoS) and enclave cyber testing
• Have worked with establishing networks, documenting network security issues and integrating DoD/DoT&E Cybersecurity Policy into them
• Written cybersecurity scenarios, and led test teams in the execution of scenarios

Please consider me for the analyst‚ cybersecurity opportunity. I am including my resume that lists my qualifications and experience.

In my previous role, I was responsible for architectural / risk based analysis of information assurance / cyber security features and relates existing system to future needs and trends and requirements.

My experience is an excellent fit for the list of requirements in this job:

• Experience with log and security event management solutions such as Splunk, Arcsight, or QRadar
• Experience with programming / data analysis and event correlation, preferably in the SIEM environment and / or the Energy sector
• Thorough understanding of multiple domains of Information Technology, including network infrastructure, systems administration, relational database administration, and application development
• Well versed in cybersecurity principles, theory, and practical application in an enterprise setting
• Professional certification, such as Security+, or SANS GSEC
• Installation, maintenance and administration of information systems to include Windows and Linux desktops and servers
• Working knowledge in securing Networks and Operating Systems to Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) standards including Windows and Linux Servers and Workstations
• Information system security monitoring and security event correlation

I am excited to be applying for the position of analyst‚ cybersecurity. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for timely and accurate reporting for the CISO, Information Technology and Cyber Risk Officer and other key stakeholders.

Please consider my qualifications and experience:

• Experience with Supplier Security Assessment processes and tools
• Basic knowledge and experience with evaluation of third party security practices
• Basic knowledge of Cloud based security as it relates to SSA, port opening and security exception processing
• Experience in working with GRC (Governance, Risk and Compliance) tools such as Modulo, which includes 1) requirements gathering, 2) implementation, configuration & maintenance, and 3) report generation for various audiences
• Assists with creating and maintaining project plans and /or business requirements that impact Corporate Security’s objectives
• P3 - 5 yrs Risk Management, Business Analytics, Information Security, IT Audit, Physical Security, Business Resiliency, or related field
• General knowledge of security controls for the handling of Personally Identifiable Information (PII) data, regulations and security compliance requirements affecting financial institutions (FFIEC/GLBA)
• Cisco networking or Windows OS background experience a bonus