Cybersecurity Analyst

We are seeking a Cybersecurity Analyst for a future role. This role is responsible for securing the organization's infrastructure, identifying vulnerabilities, and responding to security threats using advanced tools such as Splunk, IBM QRadar, CrowdStrike, Metasploit, and more. The Cybersecurity Analyst will play a crucial role in protecting the organization from cyber threats, ensuring data integrity, and enforcing robust security policies., Monitor security logs, alerts, and network traffic using Splunk, IBM QRadar, LogRhythm, ArcSight, and other SIEM tools to detect and respond to security incidents.

Investigate and analyze potential security breaches and provide timely response to mitigate risk.

Perform vulnerability assessments using tools like Nessus, OpenVAS, Snort, and Suricata.

Identify, analyze, and prioritize vulnerabilities, then coordinate patch management and remediation efforts.

Implement and manage endpoint protection solutions such as CrowdStrike, Carbon Black, and SentinelOne to secure endpoint devices across the organization.

Investigate and remediate any security incidents related to endpoint devices.

Utilize Threat Intelligence Platforms (TIPs) to gather intelligence on emerging threats and proactively search for potential security threats across the network.

Leverage tools like Wireshark, Nmap, Tcpdump, and Fiddler for deep packet inspection and network traffic analysis.

Utilize Snort and OSSEC (Host-Based Intrusion Detection) to monitor network traffic and system activities for signs of intrusion or unauthorized access.

Manage and configure Suricata for advanced network traffic analysis.

Implement DLP solutions to prevent unauthorized access and leakage of sensitive data from the organization's systems.

Conduct penetration testing using tools like Metasploit, Kali Linux, Burp Suite, and OWASP ZAP to identify security weaknesses.

Utilize Hashcat for password cracking and OpenSSL for cryptographic analysis.

Manage and configure IAM solutions such as Okta, CyberArk, and Ping Identity to ensure secure authentication and authorization practices.

Configure, manage, and monitor Fortinet, Cisco ASA, and other network security appliances to protect organizational infrastructure from external threats.

Support risk management efforts and ensure compliance with security frameworks such as NIST, ISO 27001, and industry-specific regulations.

Work with tools such as RSA Archer, OneTrust, and ServiceNow GRC for governance, risk, and compliance activities.

Utilize tools like SolarWinds, Nagios, and Zabbix for monitoring network health, performance, and security alerts.

Manage encryption tools such as VeraCrypt to secure sensitive data both at rest and in transit.

Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field, or equivalent work experience.

Industry-recognized certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), CompTIA Security+, GIAC Security Essentials (GSEC), or other relevant certifications.

2+ years of experience in a cybersecurity analyst or related role.

Hands-on experience with SIEM tools such as Splunk, IBM QRadar, LogRhythm, ArcSight.

Familiarity with endpoint security tools like CrowdStrike, Carbon Black, and SentinelOne.

Practical knowledge of network traffic analysis using Wireshark, Tcpdump, Nmap, and Fiddler.

Experience with vulnerability assessment tools like Nessus and OpenVAS.

Strong understanding of intrusion detection/prevention systems (IDS/IPS), including Snort, Suricata, and OSSEC.

Experience with penetration testing and using tools like Metasploit, Burp Suite, Kali Linux, and OWASP ZAP.

Familiarity with cloud security solutions and tools.

Experience working with Identity and Access Management systems, including Okta, CyberArk, and Ping Identity.

Solid understanding of firewalls and network security appliances, including Fortinet and Cisco ASA.

Familiarity with Data Loss Prevention (DLP) strategies and tools.

Experience working with Data Encryption tools like VeraCrypt and OpenSSL.

Knowledge of network monitoring tools such as SolarWinds, Nagios, and Zabbix.

Familiarity with risk management frameworks and tools like RSA Archer, OneTrust, and ServiceNow GRC.

Strong scripting skills with Bash or other scripting languages.