Company: Barton Malow Holdings
Job Location: Southfield, MI
Position: Cybersecurity Analyst
REQ ID: 11076
POSITION SUMMARY
The Cybersecurity Analyst is responsible for contributing to a variety of cybersecurity functions within the organization. This position is pivotal in maintaining and growing a proactive cybersecurity posture within the organization by promptly addressing security events, prioritizing tasks on our cybersecurity roadmap, and ensuring that all stakeholders are well-informed about potential threats and preventive measures. The ideal candidate for this position is someone with a great technical foundation in cybersecurity, networking, and systems who is hungry to expand on their skills to contribute to an enterprise's overall cybersecurity program.
KEY JOB RESPONSIBILITIES:
- Investigate and respond to tickets generated by the organization's Managed Detection and Response (MDR) provider.
- Actively engage in incident response and root cause analysis. Participate in incident response activities to analyze and remediate cyber threats.
- Perform internal security audits to assess the organization’s security posture, identify potential weaknesses, and recommend corrective measures.
- Educate and raise awareness among the user community about various security threats, best practices, and measures to mitigate risk.
- Prioritize risk reduction and remediation tasks to support a vulnerability management program.
- Develop and maintain technical procedures and playbooks focused on incident handling.
- Communicate effectively with technical and non-technical teams while working to improve overall cybersecurity effectiveness.
- Participate in tabletop exercises designed to simulate potential cybersecurity incidents.
- Conduct research, analysis, and correlation of events across a wide variety of data sources.
REQUIRED KNOWLEDGE, EDUCATION, EXPERIENCE, SKILLS, AND ABILITIES:
- Bachelor’s degree in computer science, cybersecurity or related field or equivalent work experience.
- 2-3 years of experience in security operations, vulnerability management, security engineering, incident response, or offensive security required.
- Conceptual and technical knowledge of modern IT environments such as server configuration/architecture, cloud, database management/configuration, networking protocols/designs, and access management/access controls.
- Strong technical skills with knowledge of a wide variety of tools, and technologies, and experience deploying and monitoring these capabilities to identify cyber threats.
- Knowledge of common cybersecurity frameworks and how to . e.g, NIST CSF, MITRE ATT&CK
- Demonstrated interpersonal skills and ability to work effectively and collaboratively with a wide range of stakeholders.
- Sharp verbal and written communication skills.
- Experience in scripting and programming languages such as PowerShell, Bash, or Python is preferred.
- Cybersecurity training or certifications from organizations such as CompTIA, TCM, SANS/GIAC, OffSec, ISC(2) is preferred.