Lead Cyber Security Analyst (2731)

Summary

The Lead Cyber Security Analyst prevents detects and responds to cyber security incidents through proactive threat analysis countermeasure deployment policy and architecture consulting implementation of timely and appropriate countermeasures. This role will analyze existing or potential security solutions and implement changes to increase their effectiveness including the creation of new solutions to fill critical gaps. The Lead Cyber Security Analyst is responsible for conducting and participating in technical self-assessment activities. The role also requires the ability to effectively communicate necessary information to relevant personnel in a timely and appropriate manner.

Duties and Responsibilities

• Lead or participate in technical self-assessment activities and provide recommendations to leadership.
• Administer in either a primary or backup capacity information security owned systems and software.
• Lead continuous monitoring data collection coordination and reporting between KCNSC and partners.
• Prevent cyber security incidents through proactive threat analysis countermeasure deployment and policy and architecture consulting.
• Detect potential intrusions through historical trending on security-relevant data sources.
• Respond to security incidents by coordinating timely and appropriate countermeasures including activating broader incident response measures if necessary
• Research test develop and implement technical solutions to secure systems and applications.
• Continuously improve existing technical security solutions based on results feedback and new threat information.
• Provide feedback and insight interpreting data from systems including vulnerability management
• Provide technical direction consultation and training for information security staff.
• Develop and define the appropriate architecture and technical requirements necessary to address information security needs.
• Develop and maintain detailed documentation and procedures regarding the security infrastructure systems and processes used.

You Must Have

• Bachelors degree in cyber security Computer Science Computer Engineering Information Systems a related discipline.
• Seven or more years in information security or more years of related experience in cyber security networking hardware operating systems or a similar role.
• Ability to travel up to 10% of the time.
• Ability to work remote hybrid or on-site as directed by management and is determined by the needs of the business.
• Regular and reliable attendance is an essential function of this job.
• This position may require on-call availability to respond to urgent escalations after regular/core business hours.
• United States Citizenship.
• Ability to obtain and maintain a U.S. Department of Energy (DOE) security clearance (some positions require additional DOE designations).

We Value

• Understanding of the broader information security field including malware emerging threats attacks and vulnerability management
• Familiar with various programming and scripting languages
• Demonstrated knowledge and operational experience with multiple cyber tools such as SIEMs log analysis vulnerability scanners intrusion detection/prevention systems web proxys firewalls and email scanners
• Attention to detail
• Demonstrated integrity in a professional environment
• Good social communication and technical writing skills
• Demonstrated cloud architecture experience
• Expert level knowledge of one of more leading Cloud platforms including Microsoft Azure and/or Amazon Web Services (Preferred).
• Deep understanding of Cloud Security (Azure AWS Preferred).
• Ability to communicate security-related concepts to a broad range of technical and non-technical staff.
• Strong analytical/problem solving skills and cross functional knowledge across multiple development and security disciplines.

FMT2021