Cybersecurity Analyst

$68,000 - $68,000/Yr

Brooklyn Academy Of Music

posted 2 months ago

Full-time - Mid Level

About the position

Brooklyn Academy of Music (BAM) is a multi-disciplinary arts center located in Brooklyn, New York, with a rich history of over 150 years. BAM is dedicated to showcasing adventurous artists and engaging both global and local communities through its world-renowned programming in theater, dance, music, opera, film, and more. The organization is currently seeking a Cybersecurity Analyst to play a crucial role in protecting BAM's critical infrastructure. The ideal candidate will have access to various toolsets for monitoring and reporting on the security status of the environment. The Cybersecurity Analyst will be responsible for performing multiple technical tasks, including research, analysis, solution design, development, product installation, system integration, and root cause analysis of cyber threats and compromises. This role is essential to ensure that BAM remains compliant and secure. The analyst will also maintain a cybersecurity training curriculum for BAM staff and consultants, aiming for a completion percentage of 75% or greater. Additionally, the analyst will implement actions to reduce and maintain BAM's cybersecurity training industry benchmarks and report quarterly on the status of these benchmarks. In this position, the analyst will respond to and log all alerts, events, and threats identified by BAM's primary cybersecurity monitoring tools within specified timeframes. They will ensure that all devices within the BAM environment are deployed with and maintain up-to-date sensors/clients for telemetry collection. The analyst will monitor and maintain patch levels across all BAM desktops, laptops, and servers, notifying IT leadership of any risks to the integrity, security, privacy, or availability of BAM's technology infrastructure or data. The Cybersecurity Analyst will work collaboratively with other IT teams to create a secure and resilient architecture, monitor network transactions and alerts, support annual PCI compliance audits, evaluate and recommend new security tools, and assist with incident response and forensic investigation activities. This role requires a proactive approach to cybersecurity and a commitment to maintaining BAM's high standards of security and compliance.

Responsibilities

  • Protect BAM's critical infrastructure by monitoring and reporting on the security status of the environment.
  • Perform research, analysis, solution design, development, product installation, system integration, and root cause analysis of cyber threats.
  • Maintain a cybersecurity training curriculum for BAM staff and consultants, ensuring a completion percentage of 75% or greater.
  • Implement actions to reduce and maintain BAM's cybersecurity training industry benchmarks and report quarterly on the status of these benchmarks.
  • Respond to and log all alerts, events, and threats identified by BAM's primary cybersecurity monitoring tools within specified timeframes.
  • Ensure all devices within the BAM environment are deployed with and maintain up-to-date sensors/clients for telemetry collection.
  • Monitor and maintain patch levels across all BAM desktops, laptops, and servers, notifying IT leadership of any risks.
  • Work with other IT teams to create a secure and resilient architecture.
  • Monitor network transactions and alerts via centralized systems and respond accordingly.
  • Support the annual PCI compliance audit and evaluate new security tools and technologies.
  • Assist with implementing BAM's cyber education platform and testing.
  • Participate in incident response and forensic investigation activities.
  • Maintain on-call status and assist IT personnel to resolve security problems with production activities.

Requirements

  • Bachelor's degree in Computer Science or related discipline or demonstrated progression in relevant work experience.
  • Knowledge of analysis, requirements gathering, and industry best practices and tools.
  • Demonstrated ability to participate in simultaneous projects of moderate to high complexity.
  • High technical knowledge of network design and routing practices.
  • Proven hands-on experience with endpoint security (EPP/EDR/NGAV/XDR), SIEM, UBA/UEBA, PAM, and vulnerability scanners.
  • Experience with identifying cyber threat actors and their associated tactics, techniques, and procedures.
  • Experience with various Windows OSs, Office 365, and other Microsoft family products.
  • Experience with various MacOSs and other Apple family products.
  • Basic Active Directory knowledge including account creation, password resets, and access controls.
  • Experience with hardware troubleshooting for laptops, monitors, external devices, desktops, and printers.
  • Ability to independently research problems using all available resources.
  • Self-directed and self-motivated, able to work effectively in stressful situations.
  • Ability to work full-time hours on a rotating schedule, including evenings, weekends, and holidays.
  • Experience with managing security and technology controls such as ISO, NIST, SOC2.
  • Experience with security incident response processes and programs.
  • Excellent organizational skills in a multi-task/multi-system environment.
  • Strong written and oral communication skills.

Nice-to-haves

  • Experience with security incident response processes and programs.
  • Familiarity with ISO, NIST, and SOC2 compliance standards.

Benefits

  • Health insurance
  • Dental insurance
  • 401(k)
  • Vision insurance
  • Access to BAM's programming and events.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service