At Roush, we fuse technology and engineering to provide product development solutions to customers in a diverse range of industries. Widely recognized for providing engineering, testing, prototype, and manufacturing services to the transportation industry, Roush also provides significant support to the aerospace, defense and theme park industries. With over 2,400 employees in facilities throughout the United States, Europe, Asia, and South America, our unique combination of creativity and tenacity activates big ideas on a global stage. We want motivated, ambitious people who put the needs of our customers first, bring creativity to their work and will do whatever it takes to achieve success. If you share our passion for providing innovative solutions to complex challenges, we want you on our team.

Roush offers competitive pay plus a generous benefits package including medical, dental, vision, life insurance, earned sick time, STD, LTD, 401K, tuition reimbursement, paid vacation, paid holidays, employee discounts.

Roush is seeking a Cyber Security Analyst to join our team! In this role you will protect Roush from cyber-attacks by monitoring our systems and evaluating threats as they arise. This role will also support in the implementation and management of cyber security policies, vulnerability assessments, and incident management and compliance to NIST/CMMC. This position is located onsite in Troy, MI.

Responsibilities:

• Support internal departments with Department of Defense (DoD) and government contracts to obtain and maintain National Institute of Standards and Technology (NIST) 800-171 and potential future state of Cybersecurity Maturity Model Certification (CMMC) compliance.
• Perform vulnerability assessment and remediation, and interface with technical teams to advocate for appropriate remediation response
• Audit endpoint & server patching processes to identify gaps and work with technical teams to resolve issues
• Monitor the corporate network for security threats and breaches and remediate anomalies/breaches.
• Conduct network monitoring and intrusion detection analysis using various tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, SIEM, NAC, EDR, DLP and host-based security tools.
• Conduct security incident investigations and collaborate with technical teams to assure incident resolution
• Research the latest cyber security trends and approaches for remediation.
• Lead cyber security education and simulated phishing tests.

Requirements:

• Bachelor’s degree in Computer Science, Computer Engineering, or related experience.
• Minimum of 2 years of experience managing a security information and event management (SIEM) system or other cybersecurity-related monitoring solutions and driving remediation based on SIEM outputs.
• Must have US Citizenship.
• Must have the ability to obtain and maintain at a minimum Department of Defense “Secret” Level Security Clearance.
• Experience with cloud-delivered commercial and government-based solutions such as Microsoft O365/Azure, Amazon Web Services and Google Cloud Platform, and experience with IT backup and disaster recovery systems.
• Working knowledge of CMMC and NIST 800-171
• Knowledge of firewalls, switches, servers (Windows, LINUX) and databases.
• Understanding and proficiency with SAN (Storage Area Network) and NAS (Network Attached Storage), Local Area Network (LAN) and Wide Area Network (WAN) concepts and configurations such as routing, cabling, VPN (Virtual Private Network), and ISPs (Internet Service Providers) options and capabilities.
• Ability to act effectively as both a technical resource and collaborative participant in system and network projects and initiatives.
• Excellent communication skills including the ability to interact effectively with customers, vendors, and team members and strong leadership and organizational skills.

Preferred Skills:

• Master’s degree in Business or Information Technology or related field.
• Minimum 5 years of professional experience supporting, securing, and maintaining networks, servers, and cloud environments.
• Certification(s) in information security such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), etc.
• 3 plus years’ experience driving NIST 800-171 and CMMC compliance.
• Experience with system installation, configuration, analysis and capacity planning and, performance monitoring techniques and tools.
• Working knowledge of network performance monitoring solutions such as SolarWinds or Nagios.
• Ability to obtain Secret Level Clearance.
• Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).
• Knowledge of project management and diagramming and vector graphics applications such as Microsoft Project and Microsoft Visio, respectively.

To apply, please visit the Roush careers page by clicking on this link: https://roush.applytojob.com

Visit our website: www.roush.com

Like us on Facebook: www.facebook.com/RoushCareers

Roush is an EO employer – Veterans/Disabled and other protected categories

If you need a reasonable accommodation for our employment application process due to disability, please contact Roush Talent Acquisition at 734-779-7087.