What are the responsibilities and job description for the Cybersecurity Analyst - Information Systems position at Orion Financial?
POSITION PURPOSE
The Cybersecurity Analyst protects company hardware, software and network systems from cyber attacks. The primary responsibility is to understand company IT infrastructure in detail, monitor at all times and evaluate threats. The Cybersecurity Analyst ensures proactive compliance of IT security systems, processes and controls with credit union information security program, security policies and regulatory compliance guidelines, and continuously looks for ways to enhance company network security and protect sensitive information.
Essential Functions And Basic Duties
EDUCATION/CERTIFICATION:
Bachelor’s degree in Computer Science, Management Information Systems or closely related subject required, advanced degree preferred. Security , CEH, CySA , CISM, CISA, CISSP certification highly desired.
Required Knowledge
Documentable knowledge of Cyber Incident Response, IDS/IPS, SIEM, PAM, Patch Management, Vulnerability and Risk Management, Data Classification Management and Threat Detection and Management.
EXPERIENCE REQUIRED: Five (5) years of experience as an IT Security Analyst or similar role
Skills/Abilities
Ability to communicate effectively with technical and non-technical Stakeholders, including senior management.
Very strong analytical & problem-solving skills,
Strong written and oral communication skills with an understanding that group presentations on created work is required for knowledge transfer, incident and problem management systems & procedures.
Ability to drive consistent and repeatable results.
Self-starter, dependable partner, as well as team player.
Working Conditions
Business professional office environment. Some evening hours and weekend on-call rotation.
Successful candidates must pass pre-employment credit checks, background checks, and drug screens.
Orion Financial is an equal opportunity at will employer and does not discriminate against any employee or applicant for employment because of age, race, religion, color, disability, sex, sexual orientation, national origin or any other federal or state protected class. We maintain a drug-free workplace and perform pre-employment substance abuse testing. If you are unable to complete this application due to a disability, contact us to ask for an accommodation or an alternative application process.
The Cybersecurity Analyst protects company hardware, software and network systems from cyber attacks. The primary responsibility is to understand company IT infrastructure in detail, monitor at all times and evaluate threats. The Cybersecurity Analyst ensures proactive compliance of IT security systems, processes and controls with credit union information security program, security policies and regulatory compliance guidelines, and continuously looks for ways to enhance company network security and protect sensitive information.
Essential Functions And Basic Duties
- Configure Tools: Virus Software, password protections software, vulnerability management software, activity log management, honeypots and privilege access management.
- Conduct SOC 2 review of third party IT security controls.
- Work with Third Party Security Operations Center for reporting, trends and incident response.
- Reporting: Evaluate detection, firewall, and traffic log data to identify activities including but not limited to: policy violations, abnormal behaviors, intrusions, best practice recommendations, etc.
- Conduct network forensics as required as a result of any cyber breach.
- Champion all IT security best practices in all layers.
- Analyze daily incident reporting trends from IDS/IPS and SIEM logs.
- Research trends, news and threats in the cyber space and recommend best practices to secure credit union data.
- Conduct ongoing tests of all company networks to determine weaknesses.
- Facilitate ongoing phishing testing and training of staff.
- Work with Microsoft Engineer on AD security hardening.
- Drive and facilitate Cyber Incident Response Policy including contingency plans.
- Drive and facilitate Data Classification Policy.
- Facilitate penetration testing, risk assessments, vulnerability and threat assessments of networks and systems. Ensure timely remediation and tracking of all findings.
EDUCATION/CERTIFICATION:
Bachelor’s degree in Computer Science, Management Information Systems or closely related subject required, advanced degree preferred. Security , CEH, CySA , CISM, CISA, CISSP certification highly desired.
Required Knowledge
Documentable knowledge of Cyber Incident Response, IDS/IPS, SIEM, PAM, Patch Management, Vulnerability and Risk Management, Data Classification Management and Threat Detection and Management.
EXPERIENCE REQUIRED: Five (5) years of experience as an IT Security Analyst or similar role
Skills/Abilities
Ability to communicate effectively with technical and non-technical Stakeholders, including senior management.
Very strong analytical & problem-solving skills,
Strong written and oral communication skills with an understanding that group presentations on created work is required for knowledge transfer, incident and problem management systems & procedures.
Ability to drive consistent and repeatable results.
Self-starter, dependable partner, as well as team player.
Working Conditions
Business professional office environment. Some evening hours and weekend on-call rotation.
Successful candidates must pass pre-employment credit checks, background checks, and drug screens.
Orion Financial is an equal opportunity at will employer and does not discriminate against any employee or applicant for employment because of age, race, religion, color, disability, sex, sexual orientation, national origin or any other federal or state protected class. We maintain a drug-free workplace and perform pre-employment substance abuse testing. If you are unable to complete this application due to a disability, contact us to ask for an accommodation or an alternative application process.