Cyber Security Analyst - Threat Modeling (5-10 yrs)

We are seeking a proactive and experienced Cybersecurity Analyst with a minimum of 5 years of experience to join our security team. The ideal candidate will have a robust understanding of cybersecurity principles, threat analysis, and incident response. The Cybersecurity Analyst will be responsible for monitoring, detecting, and responding to security incidents, as well as implementing and maintaining security controls to protect our organization's information assets.

Key Responsibilities :

- Threat Monitoring and Analysis : Monitor security systems and tools to detect and respond to security threats and incidents. Analyze security events and alerts to identify potential security breaches and vulnerabilities. Conduct investigations into security incidents, including malware infections, unauthorized access, and data breaches.

- Incident Response : Develop and execute incident response plans and procedures to address security incidents. Coordinate with internal teams and external vendors to manage and resolve security incidents. Document incidents, responses, and resolutions for reporting and compliance purposes.

- Security Controls and Measures : Implement and manage security controls, including firewalls, intrusion detection systems (IDS), and intrusion prevention systems (IPS). Perform regular security assessments and vulnerability scans to identify and address security weaknesses. Ensure compliance with security policies, standards, and regulatory requirements.

- Risk Assessment and Management : Conduct risk assessments to identify potential threats and vulnerabilities in the organization's IT environment. Recommend and implement risk mitigation strategies to reduce security risks. Assist in the development and maintenance of security policies and procedures.

- Security Awareness and Training : Provide guidance and training to employees on cybersecurity best practices and awareness. Develop and deliver security awareness programs to enhance organizational security posture.

- Collaboration and Reporting : Work closely with IT teams, management, and other stakeholders to ensure alignment on security initiatives and incident response. Prepare and present reports on security incidents, vulnerabilities, and trends to senior management.

Qualifications :

- Bachelor's degree in Computer Science, Information Security, or a related field.

- 5-10 years of experience in cybersecurity or a related field.

- Strong understanding of cybersecurity principles, threat landscape, and incident response.

- Experience with security tools and technologies (e.g., SIEM, IDS/IPS, firewalls, antivirus).

- Knowledge of security frameworks and standards (e.g., NIST, ISO 27001, CIS Controls).

- Familiarity with regulatory requirements (e.g., GDPR, HIPAA) and compliance practices.

- Excellent analytical and problem-solving skills with attention to detail.

- Strong communication skills, both written and verbal, with the ability to effectively convey technical information to non-technical stakeholders.

Preferred Skills :

- Relevant cybersecurity certifications (e.g., CISSP, CISM, CEH) are a plus.

- Experience with scripting or programming languages (e.g., Python, PowerShell) is advantageous.

- Knowledge of cloud security practices and tools is a plus.

- Familiarity with penetration testing and vulnerability assessment tools is beneficial.