Kal Tire - Cyber Security Analyst

• 4+ years of hands-on cyber security experience, including execution of penetration tests, vulnerability assessments, cloud security assessments, risk assessment, network security and SOC/Incident Response.
• 2+ years experience working on Microsoft Azure Sentinel, Microsoft Defender for Endpoint, Defender for Cloud
• 1+ years experience working with security tooling (SAST and DAST) and integrating with CI/CD pipelines.
• 4+ years of experience managing and supporting cybersecurity solutions in a complex enterprise environment.
• Broad knowledge of all facets of the cyber security landscape, including best practices, vendor solutions, threat hunting, incident response, web application security, cloud security, endpoint security, network security, security frameworks and policies, and security architecture.
• Strong written and verbal communication, presentation, and technical writing skills, coupled with a strong interest in further developing Cyber Security skills.
• Ability and comfort level researching current and emerging issues, including regulations, industry practices, and new technologies.
• Experience building project plans and managing the implementation of medium-sized projects.
• Experience with managing User and Entity Behavior Analytics (UEBA) operations.
• Bachelor's degree in computer science, information technology, or a related field and experience.
• Certifications such as EC Council Certified SOC Analyst, GCIH, CEH or other relevant certifications.

The Cyber Security Analyst has an integral role in our cybersecurity team. This position is responsible for performing security assessments of technology and applications and the developing and coordinating of cybersecurity incident response processes.

This position is also responsible for building and distribution of cybersecurity dashboards and reports for all levels of stakeholders, team member cybersecurity training, and participates in all cybersecurity initiatives.

• Research and stay up to date on the latest security threats and trends and implement appropriate countermeasures.
• Collaborates with cybersecurity team members and other Information Services (IS) teams to develop and implement security policies and procedures.
• Manages the updating and testing of Incident Response plans and procedures, IR playbooks, and tabletop exercises.
• Investigate and respond to security incidents and work to prevent future incidents from occurring.
• Evaluate the effectiveness of cyber threat response tools and drive the identification of best-fit technologies and processes to address gaps.
• Coordinates the remediation of vulnerabilities detected from penetration testing and vulnerability scanning activities.
• Participates in the planning and implementation of cyber security activities and applies a risk-based approach in all phases of a project.
• Conducts risk assessments, threat modeling, privacy assessments and information security reviews on projects and all existing technology and systems.
• Contributes to the review of internal processes and activities and assists in identifying potential opportunities for improvement.
• Management and coordination of cybersecurity awareness program.