SE#001
We are seeking a highly skilled Senior Cybersecurity Analyst with expertise in Monitoring, Evaluation, and Assessment (ME&A) to lead cybersecurity initiatives, enhance organizational security posture, and oversee critical projects in threat detection, incident response, and strategic evaluations. This role blends deep technical knowledge with a proactive approach to monitoring the effectiveness of cybersecurity tools, assessing risks, and implementing innovative solutions to ensure constant improvement.
Key responsibilities include overseeing multi-vendor relationships (e.g., MSSP), managing a vulnerability management lifecycle, deploying and evaluating cybersecurity toolsets for cloud and on-premise environments, and contributing to organizational resilience through periodic assessments, mentoring, and awareness programs.
—
Key Responsibilities
1. Monitoring & Evaluation of Cybersecurity Tools and Services
· Lead the deployment and operational evaluation of cybersecurity solutions (e.g., cloud workload protection, container security, AV/EDR, SIEM).
· Collaborate with the Managed Security Service Provider (MSSP) to identify key logs, assess detection mechanisms, and enhance threat prioritization.
· Continuously monitor the performance, detection efficacy, and return on investment (ROI) of implemented security tools.
· Manage cross-functional SIEM processes, from rule definition to log integration, ensuring coverage across 800+ devices and intelligence sources.
2. Incident Response and Threat Mitigation
· Serve as the primary escalation point for Incident Response (IR), prioritizing quick containment, investigation, and remediation through optimized DFIR processes.
· Refine detection and response protocols by integrating threat intelligence into EDR, SIEM, and vulnerability assessment processes.
· Oversight of forensic investigations, documenting findings, mitigating incidents, and leading communication between compliance and IT teams.
3. Strategic Assessment & Risk Management
· Conduct penetration testing, risk assessments, and security posture evaluations in collaboration with third-party service providers.
· Develop a risk-prioritized Vulnerability Management Program aligned with threat intelligence, increasing compliance and minimizing risk to critical assets.
· Lead periodic evaluations of external-facing systems, ensuring deployments are risk-informed and secure.
4. Vendor and Stakeholder Relationship Management
· Act as the primary liaison between internal teams and vendors, including MSSPs for SOC operations and threat detection platforms.
· Collaborate to enhance detection efficacy and align vendor-driven initiatives with organizational priorities and metrics.
5. Awareness and Capacity Building
· Mentor and guide team members, interns, and IT professionals in cybersecurity fundamentals, risk management, and technological innovations.
· Design and deliver comprehensive cybersecurity training programs and employee awareness campaigns to reduce human risk factors.
· Conduct regular phishing simulation exercises and provide actionable insights for improving security awareness.
—
Experience & Qualifications
Required Qualifications
· Bachelor’s degree in Cybersecurity, Computer Science, IT, or a related field (equivalent experience considered).
· A minimum of 5 years of progressive experience in cybersecurity operations, incident response, or vulnerability and risk management.
· Advanced technical expertise in:
· SIEM tools: Deployment, SIEM rule creation, and operational management.
· Endpoint Detection & Response (EDR) solutions, including alert integration with existing platforms.
· Incident Response: Deep experience in forensics and root cause analysis.
· Cybersecurity Tool Monitoring: Proxy, email security, and cloud security solutions.
Preferred Certifications
· CompTIA certifications: Security+, CySA+, and CASP+.
· Vendor-specific certifications in SIEM, EDR, DFIR, or vulnerability assessment tools.
Key Technical Competencies
· Proficiency in vulnerability management programs with risk prioritization based on critical findings (e.g., leveraging threat intelligence).
· Demonstrated success in deploying effective tool migrations while optimizing policies and maintaining availability.
· Practical experience with compliance initiatives and risk frameworks (e.g., NIST, ISO 27001).
Soft Skills
· Strong analytical thinking with the ability to assess, monitor, and adapt to evolving cybersecurity threats.
· Strong mentorship and team-building skills to motivate and educate cross-functional and junior teams.
· Strong communication (written and verbal) to effectively engage with internal/external stakeholders.
