Cybersecurity Operations Center Analyst

$76,200 - $76,200/Yr

The New York Independent System Operator - Rensselaer, NY

posted 20 days ago

Full-time - Entry Level
Rensselaer, NY

About the position

The Cybersecurity Operations Center Analyst at NYISO plays a crucial role in ensuring the security and reliability of the electricity system by providing continuous monitoring and response to cyber threats. This position involves working in a 24x7x365 environment, collaborating with IT groups to oversee critical infrastructure and keeping stakeholders informed about evolving threats. Analysts are responsible for incident response, security monitoring, and maintaining records of security activities, all while adapting to crisis situations and ensuring the integrity of NYISO's operations.

Responsibilities

  • Provide around the clock monitoring, analysis, and response to cybersecurity events and trends of security log data.
  • Maintain records of security monitoring and incident response activities, utilizing case management and ticketing technologies.
  • Provide incident response support, including triage, remediation, and investigation of security events.
  • Recognize potential, successful, and unsuccessful intrusion attempts through reviews and analyses of relevant event information.
  • Escalate intrusions and compromises to NYISO's network infrastructure, applications, and operating systems to the CSIRT.
  • Analyze sourced intelligence of attacker tactics, techniques, and procedures (TTPs).
  • Provide threat and vulnerability research and analysis.
  • Execute defined standard operating procedures, event, and job aides required for successful task completion.
  • Integrate and share information with other analysts and recommend changes to Standard Operating Procedures.
  • Generate end-of-shift reports for documentation and knowledge transfer to subsequent on-shift personnel.
  • Other duties as assigned.

Requirements

  • At least 1 year of experience as a Cyber Security Analyst or related role.
  • Knowledge of various security methodologies and processes, and technical security solutions (firewall, intrusion detection systems, and SIEM platforms).
  • Knowledge of TCP/IP protocols, network analysis, and network/security fundamentals.
  • Knowledge of common Internet protocols and web technologies.
  • Ability to multi-task, prioritize, and manage time effectively.
  • Strong attention to detail.
  • Excellent interpersonal skills and professional demeanor.
  • Excellent verbal and written communication skills.
  • Excellent customer service skills.
  • Proficient in Microsoft Office.

Nice-to-haves

  • Experience administrating various operating systems (e.g., Windows, OS X, Linux, etc.) commonly deployed in enterprise networks.
  • A conceptual understanding of Windows Active Directory.
  • Working knowledge of network communications and routing protocols (e.g., TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS).
  • Experience working with various event logging systems and proficiency with security event log analysis.
  • Previous experience with SIEM platforms that perform log collection, analysis, correlation, and alerting.
  • Experience in analyzing net flow data and packet capture (PCAP).

Benefits

  • Competitive salaries
  • Comprehensive benefits package
  • Flexible work options (in-office and remote)
  • Innovative reward programs
  • Enhanced work-life balance

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service