Senior Cybersecurity Analyst

CI² Aviation•Nashville, TN

1d•Hybrid

About The Position

Summary of Responsibilities: Security Architecture & Engineer Design and implement secure architectures for applications, networks, and cloud environments. Design, implement, tunes, maintains and administers corporate cybersecurity stack including, SIEM, EDR and Firewall. Develop and maintain security baselines, hardening guides, and configuration standards for enterprise security stack. Lead threat modeling and security design reviews for new systems and major changes. Threat Detection & Incident Response Build and tune detection rules, alerts, and automated response playbooks. Lead proactive threat hunting operations to identify unknown threats, anomalous behavior, and early indicators of compromise. Develop hypotheses, hunt methodologies, and repeatable procedures based on threat intelligence and environment-specific risks. Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover stealthy adversary activity. Lead investigations of security incidents and coordinate response, containment, remediation and recovery. Perform root-cause analysis and drive long-term corrective actions. Vulnerability & Risk Management Oversee vulnerability scanning, prioritization, and remediation projects and workflows. Creates on demand ad-hoc assessments of computing environment for exposure to threat intelligence reports. Conduct risk assessments for systems, vendors, and new technologies. Partner with IT infrastructure and other internal and third-party teams to remediate findings and reduce attack surface. Governance, Compliance & Policy Models and promotes adherence to security policies, standards, procedures and best practices. Has working knowledge of PCI-DSS requirements as applies to MNAA scope. Supports PCI-DSS audit and compliance efforts by gathering PCI-DSS requirement evidence. Has working knowledge of TSA EA-23-01in order to support regulatory compliance. Assists with executing remediation plans for any gaps reported in audits or recommended process improvements that affect core information security services. Knowledge, Skills, Abilities and other Characteristics Working knowledge of Unix, Linux and Windows operating systems. Supports MNAA’s commitment to its culture and values, including Respect, Integrity, Service and Excellence (RISE). Relationship Building: Skill in establishing and maintaining effective and professional working relationships with others.

Requirements

Working knowledge of Unix, Linux and Windows operating systems.
Bachelor’s degree in computer science, Management Information Systems, or relevant field of study.
2-4 years of progressive experience in computing and information security, including experience with Internet technology, security technology, issue resolution and leading teams in a cross functional.

Nice To Haves

Not required but highly preferred certifications: CISSP, GSEC, GCIA, GCIH, GCFA or other security related certifications.
7-10 years of relevant work experience with minimum of a high school diploma may be considered in lieu of educational requirement.

Responsibilities

Design and implement secure architectures for applications, networks, and cloud environments.
Design, implement, tunes, maintains and administers corporate cybersecurity stack including, SIEM, EDR and Firewall.
Develop and maintain security baselines, hardening guides, and configuration standards for enterprise security stack.
Lead threat modeling and security design reviews for new systems and major changes.
Build and tune detection rules, alerts, and automated response playbooks.
Lead proactive threat hunting operations to identify unknown threats, anomalous behavior, and early indicators of compromise.
Develop hypotheses, hunt methodologies, and repeatable procedures based on threat intelligence and environment-specific risks.
Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover stealthy adversary activity.
Lead investigations of security incidents and coordinate response, containment, remediation and recovery.
Perform root-cause analysis and drive long-term corrective actions.
Oversee vulnerability scanning, prioritization, and remediation projects and workflows.
Creates on demand ad-hoc assessments of computing environment for exposure to threat intelligence reports.
Conduct risk assessments for systems, vendors, and new technologies.
Partner with IT infrastructure and other internal and third-party teams to remediate findings and reduce attack surface.
Models and promotes adherence to security policies, standards, procedures and best practices.
Has working knowledge of PCI-DSS requirements as applies to MNAA scope.
Supports PCI-DSS audit and compliance efforts by gathering PCI-DSS requirement evidence.
Has working knowledge of TSA EA-23-01in order to support regulatory compliance.
Assists with executing remediation plans for any gaps reported in audits or recommended process improvements that affect core information security services.
Supports MNAA’s commitment to its culture and values, including Respect, Integrity, Service and Excellence (RISE).
Relationship Building: Skill in establishing and maintaining effective and professional working relationships with others.