Senior Cybersecurity Analyst

Hays - Sacramento, CA

posted 3 months ago

Full-time - Senior
Sacramento, CA
Administrative and Support Services

About the position

The Senior Cybersecurity Analyst is a pivotal role within the organization, responsible for executing hands-on activities as outlined in the cybersecurity roadmap to safeguard the company's digital assets and business operations. Reporting directly to the Chief Information Security Officer (CISO), this position plays a crucial role in the execution of the Information Security Program. The Senior Cybersecurity Analyst will engage in periodic cybersecurity activities, ensuring that the knowledge base documentation is meticulously maintained and updated. This role also involves contributing to the definition and revision of policies and procedures that govern the organization's cybersecurity practices. In addition to documentation and policy work, the Senior Cybersecurity Analyst is tasked with monitoring and tuning various cybersecurity solutions to ensure optimal performance and security posture. This includes producing detailed cybersecurity reports that provide insights into the organization's security status. The analyst will conduct vulnerability assessments and participate in risk assessment activities, promoting collaboration and monitoring efforts across different departments within the organization. A key responsibility is to define and measure Key Performance Indicators (KPIs) that reflect the effectiveness of the cybersecurity initiatives. The Senior Cybersecurity Analyst will also be responsible for the execution of cybersecurity training programs, ensuring that all employees are equipped with the necessary knowledge to recognize and respond to security threats. This role includes the definition and maintenance of Incident Response playbooks, and the analyst will be involved in every phase of the incident response process, potentially coordinating activities with IT staff. Furthermore, the analyst will verify the security of third-party vendors to ensure compliance with the company's security requirements, thereby playing a critical role in the overall security framework of the organization.

Responsibilities

  • Execute hands-on activities defined in the cybersecurity roadmap to protect digital assets.
  • Report to the CISO and assist in executing the Information Security Program.
  • Conduct periodic cybersecurity activities and maintain knowledge base documentation.
  • Contribute to the definition and update of cybersecurity policies and procedures.
  • Monitor and tune cybersecurity solutions for optimal performance.
  • Produce detailed cybersecurity reports.
  • Conduct vulnerability assessments and participate in risk assessment activities.
  • Promote synergies and monitoring activities with other departments.
  • Define and measure Key Performance Indicators (KPIs) for cybersecurity initiatives.
  • Execute cybersecurity training programs for employees.
  • Define and maintain Incident Response playbooks.
  • Participate in all phases of the incident response process, coordinating with IT staff as needed.
  • Verify the security of third-party vendors to meet company security requirements.

Requirements

  • Bachelor's degree in computer science, Information Technology, Engineering, or a related discipline.
  • Relevant industry certifications in security and technical fields (e.g., CEH, OSCP, GIAC) are a plus.
  • Strong technical background is essential.
  • 4+ years of experience as an Information Security Analyst with hands-on experience in vulnerability assessments and penetration testing.
  • Experience working with system and network technical teams, legal office, and internal audit.
  • Familiarity with security technologies including VA/PT, WAPT, XDR, firewall, intrusion prevention, web filtering, and log monitoring.
  • Understanding of security concepts such as network segmentation, DMZ, tiered architecture, and cryptography.
  • Strong background in Active Directory and networking is required.
  • Good knowledge of GNU/Linux and scripting languages is necessary.
  • Experience with SIEM solutions is preferred.
  • Critical thinking skills with the ability to cope with complex situations and strong problem-solving capabilities.
  • Proactive, self-motivated, and detail-oriented with strong analytical skills.

Nice-to-haves

  • Experience with cloud security solutions.
  • Knowledge of compliance frameworks such as NIST, ISO 27001, or PCI-DSS.
  • Familiarity with security automation tools.

Benefits

  • Medical Insurance
  • Dental Insurance
  • Life Insurance
  • 401K

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service