Security Analyst

Job Description

Security Analyst II (Hybrid)

Department: Cybersecurity & Program Management

Corporate Area: Technology and Operations

Status: Full-time/Regular/Exempt

Supervisor: Sr. Director, Cybersecurity & Program Management

Position Overview:

The Security Analyst II is responsible for the design, configuration, testing, and deployment, of on-prem and cloud services. They will provide incident response, threat hunting and proactive support of all development activities in both the cloud and on-prem environments. Here is your opportunity to make a difference, by joining the PBS team and helping us enhance how we deliver our mission. We are looking for someone who delivers quality results, takes ownership in this space, and works proactively.

Key responsibilities will include, but are not limited to:
• Ensure anomalous activity is detected and the potential impact of events is understood.

• Ensure that information systems and assets are monitored to identify cybersecurity events and verify the effectiveness of protective measures.

• Ensure detection processes and procedures are maintained and tested to ensure awareness of anomalous events.

• Ensure response activities are coordinated with internal and external stakeholders (e.g. external support from service providers).

• Ensure analysis is conducted to ensure effective response and support recovery activities.

• Ensure activities are performed to prevent expansion of an event, mitigate its effects, and resolve the incident.

• Ensure response processes and procedures are executed and maintained, to ensure response to detected cybersecurity incidents.

• Ensure recovery processes and procedures are executed and maintained to ensure restoration of systems or assets affected by cybersecurity incidents.

• Ensure recovery planning and processes are improved by incorporating lessons learned into future activities.

• Ensure restoration activities are coordinated with internal and external parties (e.g. coordinating centers, other CSIRTs, and vendors).

• Additional activities as necessary to support the overall cybersecurity and PBS mission.

Requirements for success:
• Minimum of 2 years' experience working as a systems engineer or administrator.

• Minimum of 3 years' experience working as a security analyst.

• Minimum of 5 years of cybersecurity experience.

• GCIH, GCIA, GMON, GCED, or equivalent GIAC defense focused certifications desired.

• Certifications by EC-Council, ISC2, CompTIA, Offensive Security, etc to be considered based on relevance to defensive cybersecurity operations.

• Bachelor's Degree in a related field such as cybersecurity, information technology, or computer science; equivalent combination of experience may be considered

Required Knowledge:
• Expert knowledge in the following technologies and concepts: DFIR, IAM, PAM, DLP, NGFW, EDR, SIEM, IDS/IPS.

• Strong foundational knowledge in the following technologies and concepts: email security technologies, application security, cloud security (IaaS & PaaS), MITRE ATT&CK, SOAR, CASB, MSSPs, DNS, Linux, Windows.

• Basic fundamental knowledge of NIST, MDM, OWASP, PowerShell/Python/Javascript, MacOS, malware analysis, LOLBAS, vulnerability management, WAF, CIS Benchmarks.

Technical Skills/Abilities:
• Ability to participate as a technical lead on all projects requiring cybersecurity expertise and consultation.

• Ability to lead a Computer Security Incident Response Team (CSIRT) and Managed Security Services Partners (MSSPs) in the execution of daily incident response activities.

• Ability to deploy, integrate, configure, and maintain systems which comprise the overall cybersecurity technology stack.

Business Skills/Abilities:
• Ability to communicate complex cybersecurity concepts in a clear and concise manner for laypersons unfamiliar with cybersecurity and/or IT concepts.

• Desire and ability to help drive organizational adoption and buy in of cybersecurity policies and standards across the business.

• Eagerness to develop, grow, and maintain strong inter-team relationships across the business to aid in the accomplishment of the PBS mission.

Must have received or be willing to receive the COVID-19 vaccination by date of hire to be considered. Proof of vaccination required.

PBS is an Equal Opportunity Employer in accordance with the EEOC and the Commonwealth of Virginia.

Jobcode: Reference SBJ-rn9zwk-18-188-40-207-42 in your application.