The Senior Cyber Defense Analyst will report to the Manager, Information Security. As a member of the Cybersecurity team, the position will actively contribute to the maturation of the company's cybersecurity strategy and programs based on key processes, practices, and standards necessary to manage the risks and cybersecurity controls. The role is responsible for support efforts to protect the organization’s digital infrastructure from cyber threats. This role involves analyzing and responding to complex security incidents, managing advanced security tools, and developing strategies to mitigate risks. The Senior Analyst will also work closely with cross-functional teams to ensure the organization's security posture remains robust and up to date with evolving threats.
- Monitor and analyze security alerts from a variety of detection systems, including SIEM (Security Information and Event Management) tools and in conjunction with the MSSP/SOC service provider.
- Lead incident response efforts, conducting root cause analysis, containment, eradication, and recovery activities.
- Execute incident response playbooks.
- Tune the alarms to minimize the false positives.
- Prepare detailed reports on security incidents, trends, and recommendations for improvements.
- Identify the gap in detection coverage and manage the remediation plan.
- Develop and implement advanced detection techniques to identify potential threats, vulnerabilities, or attacks.
- Operational support for the overall risk management program.
- Measure and act on critical metrics with a focus on continuous improvement to align with risk management framework.
- Coordinate the resolution of cybersecurity risks by working with business and IT owners.
- Maintain thorough documentation of incidents, investigations, and outcomes.
Additional Responsibilities
- Provide executive summaries and briefings for senior management on the organization’s security posture.
- Oversee day-to-day security operations and guide junior analysts in managing security tools and responding to incidents.
- Perform regular threat hunting activities to proactively discover threats within the organization.
- Ensure compliance withsecurity policies and procedures.
- Function as a liaison between security teams and other departments to promote security awareness and best practices.
- Mentor junior analysts and provide guidance on advanced security topics and tools.
- Conduct internal training sessions on emerging threats and mitigation strategies.
- Identify gaps in operational procedures and documentation & aid to close them.
- Consult and facilitate with stakeholders on cybersecurity matters including projects and with compliance to policy, procedures, standards, and additional guidelines.
- Keeps abreast of the latest cybersecurity, privacy, and regulatory concerns and best practices.
Education & Experience
- Bachelor’s degree in computer science, Information Security, or a related field.
- 5+ years of experience in cybersecurity or IT security roles.
- Proficiency in incident response, threat analysis, and vulnerability management.
- Strong understanding of network protocols, operating systems, and security technologies such as firewalls, IDS/IPS, EDR, and SIEM.
- Relevant certifications such as CISSP, CISM, CEH, or GIAC are highly preferred.
- Experience with regulatory compliance and security standards (e.g., NIST, ISO 27001, GDPR).
