Troy, MI, USA
143 days ago
Senior Cyber Security Analyst
We work alongside the best and brightest to do incredibly cool things you wouldn't believe. At Roush, you're part of building the future. Are you someone that has a passion for providing innovated solutions to complex challenges? Do you want to work someplace where creativity and new ideas are encouraged? If so, then keep reading.
We fuse technology and engineering to provide product development solutions to customers in a diverse range of industries. Widely recognized for providing engineering, testing, prototype, and manufacturing services to the transportation industry, Roush also provides significant support to the aerospace, defense, and theme park industries. With over 2,400 employees in facilities throughout the United States, Europe, Asia, and South America, our unique combination of creativity and tenacity activates big ideas on a global stage.

Job Summary:

The Senior Cyber Security Analyst will protect the organization from cyber-attacks by monitoring the information technology systems and evaluating threats as they arise. The role will also support in the implementation and management of cyber security program, data loss prevention, vulnerability assessments, incident management and implementing/managing security tools. This position is located in Troy, MI.

As Senior Cyber Security Analyst, you will:Develop information security program and implement NIST-800-171/CMMC FrameworkManage (SSP) system security plan, (POAM) plan of action and milestone and update (SPRS) Supplier performance risk system scoreLead MS365/O365 security & compliance implementation by ensuring security requirements are satisfied and help adjust policy as neededManage the SIEM solution and identify, triage, and assist in remediation of cyber security alertsDefine technical and business processes and policies related to data protection strategies as well as implementing DLP solutions to provide, security, privacy, and integrityPerform vulnerability assessment and assist in remediation, and interface with technical teams to advocate for appropriate remediation responsesAudit endpoint & server patching processes to identify gaps and work with technical teams to resolve issuesConduct network/host monitoring and intrusion detection analysis using various tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, SIEM, NAC, EDR, DLP, Cisco Umbrella and host-based security toolsLead in conducting security incident investigations, act as a security subject matter expert during cyber incident response and collaborate with technical teams to assure incident(s) is/are resolvedMonitor the corporate network for vulnerabilities, security threats, and breaches and work to remediate anomalies/breachesResearch the latest cyber security trends and apply knowledge as necessaryLead cyber security education and simulated phishing testsWork with 3rd party security vendors such as a MSSP (Managed Security Service Provider)Work with Cyber Security/IT personnel throughout RoushMinimum qualifications to be considered:Must be a U.S CitizenMust be able to secure and maintain a Department of Defense security clearanceBachelor’s degree in computer science, computer engineering, or related fieldMinimum 5 years of experience managing a security information and event management (SIEM) systems or other cyber security-related monitoring solutions and driving remediation based on SIEM outputsMinimum 5 years of experience managing vulnerabilities, patch management, and remediationMinimum 5 years of experience with cloud-delivered commercial and government-based solutions such as Microsoft M365-E5/Azure, and experience with IT backup and disaster recovery systemsWorking knowledge of NIST Framework, MS-365 Security & Compliance, DLP, SIEM, CrowdStrike, Cisco Umbrella, Incident management, TCP/IP (Transmission Control Protocol/Internet Protocol), OSI (Open Systems Interconnections) Model, DNS (Domain Name System), and DHCP (Dynamic Host Configuration Protocol)Working knowledge of firewalls, switches, servers (Windows, LINUX) and databasesUnderstanding and proficiency with SAN (Storage Area Network) and NAS (Network Attached Storage), Local Area Network (LAN) and Wide Area Network (WAN) concepts and configurations such as routing, cabling, VPN (Virtual Private Network), and ISPs (Internet Service Providers) options and capabilitiesAbility to act effectively as a technical resource in annual disaster recovery testing initiativesExcellent communication skills including ability to interact effectively with customers, vendors, and team members and strong leadership and organizational skillsA successful candidate may also have:Master’s degree in business, information technology or related fieldMinimum 5 years of professional experience supporting, securing, and maintaining networks, servers, and cloud environmentsCertification(s) in information security such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), etc.Experience with system installation, configuration, and analysis and capacity planning and performance monitoring techniques and toolsWorking knowledge of network performance monitoring solutions such as SolarWinds or Nagios.Knowledge of a project management and diagramming and vector graphics applications such as Microsoft Project and Microsoft Visio, respectively.Our full-time benefits include: medical, dental, vision, life insurance, earned sick time, STD, LTD, 401K, tuition reimbursement, paid vacation, paid holidays, and more.
If you share our passion for providing innovative solutions to complex challenges, we want you on our team.
Please visit our careers page and apply by clicking on this link: https://jobs.roush.com/us/en/
Visit our website: www.roush.com
Like us on Facebook: www.facebook.com/RoushCareers
Roush is an EO employer – Veterans/Disabled and other protected categories
If you need a reasonable accommodation for our employment application process due to disability, please contact Roush Talent Acquisition at 734-779-7087.
Confirm your E-mail: Send Email