Senior Cybersecurity Analyst

Summary of Responsibilities:

Security Architecture & Engineer

• Design and implement secure architectures for applications, networks, and cloud
  environments.
• Design, implement, tunes, maintains and administers corporate cybersecurity stack
  including, SIEM, EDR and Firewall.
• Develop and maintain security baselines, hardening guides, and configuration
  standards for enterprise security stack.
• Lead threat modeling and security design reviews for new systems and major
  changes.

Threat Detection & Incident Response

• Build and tune detection rules, alerts, and automated response playbooks.
• Lead proactive threat hunting operations to identify unknown threats, anomalous
  behavior, and early indicators of compromise.
• Develop hypotheses, hunt methodologies, and repeatable procedures based on
  threat intelligence and environment-specific risks.
  
• Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover
  stealthy adversary activity.
• Lead investigations of security incidents and coordinate response, containment,
  remediation and recovery.
• Perform root-cause analysis and drive long-term corrective actions.
  

Vulnerability & Risk Management

• Oversee vulnerability scanning, prioritization, and remediation projects and
  workflows.
• Creates on demand ad-hoc assessments of computing environment for exposure to
  threat intelligence reports.
• Conduct risk assessments for systems, vendors, and new technologies.
• Partner with IT infrastructure and other internal and third-party teams to remediate
  findings and reduce attack surface.

Governance, Compliance & Policy

• Models and promotes adherence to security policies, standards, procedures and
  best practices.
• Has working knowledge of PCI-DSS requirements as applies to MNAA scope.
• Supports PCI-DSS audit and compliance efforts by gathering PCI-DSS requirement
  evidence.
• Has working knowledge of TSA EA-23-01in order to support regulatory compliance.
• Assists with executing remediation plans for any gaps reported in audits or recommended process improvements that affect core information security services.

Knowledge, Skills, Abilities and other Characteristics

• Working knowledge of Unix, Linux and Windows operating systems.
• Supports MNAA’s commitment to its culture and values, including Respect, Integrity, Service and Excellence (RISE).
• Relationship Building: Skill in establishing and maintaining effective and professional working relationships with others.
  

Certifications, Education and Experience

• Not required but highly preferred certifications: CISSP, GSEC, GCIA, GCIH, GCFA or other security related certifications.
• Bachelor’s degree in computer science, Management Information Systems, or relevant field of study. 7-10 years of relevant work experience with minimum of a high school diploma may be considered in lieu of educational requirement.
• 2-4 years of progressive experience in computing and information security, including experience with Internet technology, security technology, issue resolution and leading teams in a cross functional.