Cybersecurity Analyst I
- Jalisco
- Permanente
- Tiempo completo
This role will collaborate with others to detect and respond to cybersecurity incidents, while maintaining and following procedures for cybersecurity monitoring and incident response escalation Additionally, this role will monitor and analyze security events on the network and endpoints through various security tools.
The Cybersecurity Analyst also supports the administration of cybersecurity tools & resolution of customer requests related cybersecurity tools or incidents.
The Cybersecurity Analyst should have familiarity with the principles of network and endpoint security, current threat and attack trends, and a working knowledge of security principles such as defense in depth.
Key Job Accountabilities:
- Monitor security events, alerts, and reports for unusual or suspicious activity; interpret activity, respond to incidents, and make recommendations for remediation or future mitigation.
- Perform initial analysis and investigation into security alerts upon arrival in the global ticketing system.
- Triage events and investigate to identify security incidents and escalate as part of the incident response process, as applicable.
- Receive input from threat intelligence sources and analyze events to identify threats and risks.
- Partner with cross functional teams to investigate, document, and resolve cybersecurity incidents & customer requests.
- Monitor Cybersecurity Team ticket queue to analyze, troubleshoot, and solve problems.
Investigate removable media usage and determine valid business need to reduce risk.
Additional Accountabilities:
- Collaborate with various teams to provide feedback on tools and offerings as to continuously improve internal processes & customer satisfaction.
- Develop, maintain, and assist in the enforcement of policies, procedures, knowledge base articles, & security baselines.
- Promote cybersecurity best practices by presenting relevant material in blogs, reports, or presentations.
- Basic understanding and/or working experience with different attack vectors such as malware, phishing, social engineering, or vulnerability exploitation.
- Maintain up-to-date knowledge of current cybersecurity news & threat trends.
- Make recommendations for ongoing tuning and updates to the cybersecurity operational monitoring tools.
- Additional duties as required.
Education/Experience Qualifications:
- A minimum of an _Associate's degree in IT or cybersecurity related field_ is required; a _Bachelor's degree in IT or cybersecurity related field_ is preferred.
- _ 1-3 years_ of related experience is required.
An equivalent combination of education, certifications, or experience sufficient to successfully perform the key job accountabilities may be considered.
Other Qualifications:
- Experience in technical support or help desk work, preferably in a manufacturing setting.
- Exposure to DLP, Anti-Virus, SIEM, EDR, Vulnerability Scanners and other cybersecurity tools a plus.
- Basic understanding and/or working experience with Active Directory & Windows or Linux system administration.
- Basic understanding and/or working experience with network services and devices, the OSI model, and TCP/IP protocols
Work Environment:
- The work setting should consist of an office environment with suitable lighting, comfortable temperatures, and a low noise level.
- This document does not represent a contract of employment and is not intended to capture every possible assignment the incumbent could be asked to perform._
Buscojobs