Senior Cybersecurity Analyst
CI Squared Aviation, Inc., Nashville, TN, United States
Summary of Responsibilities:
Security Architecture & Engineer
Design and implement secure architectures for applications, networks, and cloud environments. Design, implement, tunes, maintains and administers corporate cybersecurity stack including, SIEM, EDR and Firewall. Develop and maintain security baselines, hardening guides, and configuration standards for enterprise security stack. Lead threat modeling and security design reviews for new systems and major changes. Threat Detection & Incident Response
Build and tune detection rules, alerts, and automated response playbooks. Lead proactive threat hunting operations to identify unknown threats, anomalous behavior, and early indicators of compromise. Develop hypotheses, hunt methodologies, and repeatable procedures based on threat intelligence and environment-specific risks. Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover stealthy adversary activity. Lead investigations of security incidents and coordinate response, containment, remediation and recovery. Perform root-cause analysis and drive long-term corrective actions. Vulnerability & Risk Management
Oversee vulnerability scanning, prioritization, and remediation projects and workflows. Creates on demand ad-hoc assessments of computing environment for exposure to threat intelligence reports. Conduct risk assessments for systems, vendors, and new technologies. Partner with IT infrastructure and other internal and third-party teams to remediate findings and reduce attack surface. Governance, Compliance & Policy
Models and promotes adherence to security policies, standards, procedures and best practices. Has working knowledge of PCI-DSS requirements as applies to MNAA scope. Supports PCI-DSS audit and compliance efforts by gathering PCI-DSS requirement evidence. Has working knowledge of TSA EA-23-01in order to support regulatory compliance. Assists with executing remediation plans for any gaps reported in audits or recommended process improvements that affect core information security services. Knowledge, Skills, Abilities and other Characteristics
Working knowledge of Unix, Linux and Windows operating systems. Supports MNAA's commitment to its culture and values, including Respect, Integrity, Service and Excellence (RISE). Relationship Building: Skill in establishing and maintaining effective and professional working relationships with others. Certifications, Education and Experience
Not required but highly preferred certifications: CISSP, GSEC, GCIA, GCIH, GCFA or other security related certifications. Bachelor's degree in computer science, Management Information Systems, or relevant field of study. 7-10 years of relevant work experience with minimum of a high school diploma may be considered in lieu of educational requirement. 2-4 years of progressive experience in computing and information security, including experience with Internet technology, security technology, issue resolution and leading teams in a cross functional.
Security Architecture & Engineer
Design and implement secure architectures for applications, networks, and cloud environments. Design, implement, tunes, maintains and administers corporate cybersecurity stack including, SIEM, EDR and Firewall. Develop and maintain security baselines, hardening guides, and configuration standards for enterprise security stack. Lead threat modeling and security design reviews for new systems and major changes. Threat Detection & Incident Response
Build and tune detection rules, alerts, and automated response playbooks. Lead proactive threat hunting operations to identify unknown threats, anomalous behavior, and early indicators of compromise. Develop hypotheses, hunt methodologies, and repeatable procedures based on threat intelligence and environment-specific risks. Analyze telemetry from SIEM, EDR, network sensors, and cloud logs to uncover stealthy adversary activity. Lead investigations of security incidents and coordinate response, containment, remediation and recovery. Perform root-cause analysis and drive long-term corrective actions. Vulnerability & Risk Management
Oversee vulnerability scanning, prioritization, and remediation projects and workflows. Creates on demand ad-hoc assessments of computing environment for exposure to threat intelligence reports. Conduct risk assessments for systems, vendors, and new technologies. Partner with IT infrastructure and other internal and third-party teams to remediate findings and reduce attack surface. Governance, Compliance & Policy
Models and promotes adherence to security policies, standards, procedures and best practices. Has working knowledge of PCI-DSS requirements as applies to MNAA scope. Supports PCI-DSS audit and compliance efforts by gathering PCI-DSS requirement evidence. Has working knowledge of TSA EA-23-01in order to support regulatory compliance. Assists with executing remediation plans for any gaps reported in audits or recommended process improvements that affect core information security services. Knowledge, Skills, Abilities and other Characteristics
Working knowledge of Unix, Linux and Windows operating systems. Supports MNAA's commitment to its culture and values, including Respect, Integrity, Service and Excellence (RISE). Relationship Building: Skill in establishing and maintaining effective and professional working relationships with others. Certifications, Education and Experience
Not required but highly preferred certifications: CISSP, GSEC, GCIA, GCIH, GCFA or other security related certifications. Bachelor's degree in computer science, Management Information Systems, or relevant field of study. 7-10 years of relevant work experience with minimum of a high school diploma may be considered in lieu of educational requirement. 2-4 years of progressive experience in computing and information security, including experience with Internet technology, security technology, issue resolution and leading teams in a cross functional.