Purpose of Position
The Cybersecurity Analyst, Lead contributes to the strategic and technical direction of NetJets' Cybersecurity Operations infrastructure. This role plays a pivotal part in shaping cybersecurity standards and implementing security controls, with a focus on security code development, enhancing detection capabilities, engineering security alerts, and responding to incidents. The ideal candidate will demonstrate expertise in cybersecurity engineering, threat intelligence, incident response, code security, and the implementation of cybersecurity tools. This position requires a high degree of adaptability, with responsibilities across multiple high-profile projects.
Tasks And Responsibilities
- Develop and oversee cybersecurity controls, ensuring alignment with NetJets’ security policies and standards.
- Assist with leading implementation of cybersecurity tools, including SIEM engineering, DevOps development for security, and endpoint detection.
- Conduct detailed triage for security tickets and provide timely responses to cybersecurity incidents.
- Collaborate with cross-functional teams, including Cybersecurity Incident Responders, Threat Intelligence Analysts, and Cybersecurity Architects, to advance NetJets’ cybersecurity posture.
- Maintain awareness of the threat landscape and provide insights on potential risks and mitigation strategies.
- Conduct data analysis on security monitoring outputs, coordinating remediation patching as necessary.
- Document policies, procedures, and standards based on guidance from Corporate Security Management.
- Advise various teams on cyber risks, mitigation measures, and strategies to maintain compliance with security controls.
- Assist in ongoing security audits and assessments to ensure compliance with company policies and regulatory requirements.
- Participate in incident response, offering technical security expertise in support of critical events.
Education
Bachelor's in Information Technology or Computer Information Systems
Certifications and Licenses
Years Of Experience
4-6 years of experience
Core Competencies
Strives for Positive Results
Curiosity
Collaboration
Adaptability
Service-Oriented
Knowledge, Skills, Abilities And Other (KSAOs)
- Strong organizational, interpersonal, and communication skills.
- 4-6+ years of experience with various standards (e.g., PCI/DSS, SOX, NIST, HIPAA).
- In-depth understanding of security technologies, including NextGen firewalls, endpoint security, DLP, and vulnerability management.
- Proven ability to manage changing workloads, prioritize tasks, and deliver quality work within required timeframes.
- Proficiency in security monitoring and analysis tools (e.g., SIEM).
- Solid understanding of web application security (OWASP Top 10) and cybersecurity best practices.
- Ability to work independently, conduct in-depth research, and adapt quickly to new technologies.
- Experience in security incident response and familiarity with threat intelligence operations.