Security Cyber Analyst Job Description
Security Cyber Analyst Duties & Responsibilities
To write an effective security cyber analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included security cyber analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Security Cyber Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Cyber Analyst
List any licenses or certifications required by the position: CISSP, GIAC, CEH, SANS, III, ISC, IAT, GCIA, ITIL, ISO
Education for Security Cyber Analyst
Typically a job would require a certain level of education.
Employers hiring for the security cyber analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Technical, Engineering, Information Technology, Education, Information Systems, Cyber Security, Technology, Information Security, Computer Engineering
Skills for Security Cyber Analyst
Desired skills for security cyber analyst include:
Desired experience for security cyber analyst includes:
Security Cyber Analyst Examples
Security Cyber Analyst Job Description
- Explore and research advanced cyber security technologies and approaches as needed to support digital manufacturing projects and solutions
- Leverage tools and techniques to monitor and enforce endpoint security policies
- Correlate actionable security events from various sources including Security Information Management System (SIMS) data and develop correlation techniques
- Utilize understanding of attack signatures, tactics, techniques and procedures associated with advanced threats to identify potential threats/attacks
- SNORT network intrusion prevention system (NIPS) and network intrusion detection system (NIDS)
- Provide reports in SOC environment
- Work with forensic team to diagnose cyber security related threats
- Respond to industry notices, monitor external threat feeds
- Analyze threat and figure out course of action
- Plans and implements new projects and security initiatives
- Direct experience in security operations centre, network analysis, threat analysis or intelligence analysis required
- Security certifications such as GCIA, GPEN, GREM, GCFA, GCIH is a plus
- Relevant industry standard certifications preferred (SANS, CISSP, C|EH, .)
- Digital Network Forensics
- Ability to persuasively present and justify recommendations to colleagues and clients alike
- Real-time software languages including assembly languages and C
Security Cyber Analyst Job Description
- Train SOC analysts on IDS incident handling techniques
- Reviewing evidence of remediation of findings, providing guidance and expertise where necessary
- Submitting updates for existing system security plans based on POA&M closure or documented deviations from the implementation of security controls
- Interpreting policies, procedures, standards, guidelines, and regulations to include National Institute of Standards and Technology (NIST) and Federal Information Security Management Act
- Interpret, analyze, and execute incident response actions for detected intrusion anomalies and events
- Intercept and prevent internal and external cyber-attacks or attempts against PNNL systems
- Conduct system, network, and software vulnerability assessments and penetration testing
- Contribute to design, development and implementation of countermeasures of cyber security systems
- Collaboration with external entities including law enforcement, and other U.S. government agencies
- Partner with cyber security researchers on data analysis, prototype implementation, collaboration, and feedback
- Ability to anticipate and respond to changing priorities, and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness to business unit matters and needs
- Evening and weekend hours may be required
- Knowledge of networking protocols (such as TCP, UDP, DNS, FTP, SMTP, DHCP)
- Experience managing an investigation
- Bachelor's degree and at least 5 years' experience in a level 3 role
- Ability to gain and maintain a Public Trust
Security Cyber Analyst Job Description
- Provide guidance for new technologies and methodologies as business needs evolve
- Identify and respond to threats to meet or exceed defined SLAs
- Ensure compliance with established security configuration standards and best practices
- Maintain, manage and upgrade agent-based forensic tools
- Create and maintain appropriate standard operating procedures for the CSOC, including business continuity plans
- Cross-train others CSOC team members/other teams on primary areas of responsibility
- Tuning of and responding to requests for application whitelisting solutions
- Develop, implement, and operate access management functions as part of an enterprise cyber security program
- Facilitate access management operations through the day to day support of the customers, partners, and systems involved in the process
- Develop and maintain access management reports and processes to identify access events, exceptions, or trends which require investigation, remediation, or mitigation
- Splunk Enterprise Security
- Palo Alto Firewalls and security features
- Cisco Scan Safe endpoint web filtering
- Barracuda NG Firewalls and Barracuda Web Application Firewall (WAF)
- Pulse VPN
- NMAP and /or other like tools (Kali Linux, metasploit)
Security Cyber Analyst Job Description
- Provide guidance, interpretation and education on specific security policies (primarily CPI-810) across requesting organizations related to their projects and applications
- Determine if security risk factors exist and help stakeholders understand the risk factors and design compensating controls that meet Corporate Information Security Standards
- Identify initiatives with risk areas that need specialized security expertise
- Collaborate with the core business partners and other security teams to improve controls via creative process design which meet the evolving business needs for customer experience and efficiency
- Collaborate and build relationships with key business partners for continued security education and awareness
- Assist in cyber events and investigations, including but not limited to, data discovery & analysis and customer notification, as needed
- Assist in budget governance processes for the CIS project portfolio, including vendor statement of work and project portfolio oversight
- Providing coaching to the team and other areas in line with Cyber Security policy
- Collaborating and overseeing the strategic alignment with other Cyber Security areas
- Ensuring that the Cyber Security team follows best practice and early adoption of Security in alignment with policy and industry standards
- Bachelor’s degree and 2 years of experience in information systems and IT security
- To handle and complete customer projects to the defined requirements in the timeframe required by customer with the highest quality and integrity
- Of work
- To meet and exceed customer’s expectations with projects and other related tests and activities
- In-depth understanding of information security principles and controls as it relates to application systems and general support systems, including network security
- Knowledge of vulnerability scanning and vulnerability management practices
Security Cyber Analyst Job Description
- Conduct network security assessments
- Conduct log analysis to identify malicious activity and anomalous behaviour
- Appropriately represent cyber security on cross-functional IT project teams
- Support the certification and accreditation (C&A) of new and existing information systems and applications
- Define, generate and ensure the compliance of system documentation and Standard Operating Procedures
- Support the planning, design, enforcement and auditing of security policies and procedures which safeguard intrastructure, systems, files and data
- Work with ASO to maintain risk management tools and ensure align with defined standard
- Track risk mitigation and update risk status
- Conduct security compliance reviews
- Review results of quarterly activities associated with the annual security test plan and create contractual reports
- Knowledge of Information Assurance Policy and Guidance
- Knowledge of Information System Security Plans and/or System Security Authorization Artifacts
- Knowledge of Assessment and Authorization activities in accordance with ICD 503, the Risk Management Framework (JSIG/DJSIG), DoD instruction 8510.01, DCID 6/3, JAFAN 6/3, and NISPOM Chapter 8
- Ability to use Microsoft Suite
- Ability to apply advanced skill set to resolve complex problems
- Bachelor degree in Computer Science or Business Information Systems preferred or relevant technical training or equivalent work experience