Cyber Security Analyst III (IT security operations)

Req ID:446054 Benefits:* Fuel Your Growth with Love's - company funded tuition assistance program* Paid Time Off * 401(k) – 100% Match up to 5% * Medical/Dental/Vision Insurance after 30 days * Hiring Immediately * Hybrid work-scheduleABOUT THE POSITION: The Cyber Security Analyst III provides leadership and expertise to IT staff and other departments related to information security issues. The Analyst monitors and responds to security incidents, performs vulnerability assessments, creates process documentation, and otherwise contributes to the development and maintenance of a sound information security program. The Cyber Security Analyst III reports to the Supervisor/Manager of Information Security.This position is a part of Love'sForensics Security Operations center team, and this role will focus on threat detection and incident response.LOCATION: This position is located at Love's corporate office in Oklahoma City.Hybrid work-schedule:3 workdays will be onsite at the corporate office in Oklahoma City, and 2 workdays can be remote. You MUST reside in the Oklahoma City metro areaor be in the process of relocating to the OKC metro area in order to be considered for this position because this is not a remote position.MAJOR RESPONSIBILITIES:Participates in/develops partnerships for IT and Operations projects as needed to support information security architecture and integration of all security elementsDesigns, implements, and maintains Love’s network security monitoring infrastructure and toolsCoordinates and documents incident handling and response effortsPerforms digital forensic investigations as directed by Legal, Risk Management, or Human ResourcesPerforms e-discovery tasks in support of litigation matters from Legal or Risk ManagementAdministers, updates and engineers solutions for security operations and e-discovery tools and platformsCoordinates with other internal teams for collection of logs/data required for security review and monitoringParticipates and coordinates all threat intelligence effortsResearches the threat landscape and conducts vulnerability analysis on emerging risks to the organization, and recommends remediation activities to managementPerforms complex administrative and engineering oversight duties for security devices, appliances and systemsProvides mentor leadership to other Information Security staffWorks with third-party support and security equipment vendorsParticipates in the risk assessment processCoordinates and performs regularly scheduled security scanning across the IT infrastructureConducts research on security products in support of procurement and development efforts. Evaluates and recommends products for purchaseReceives and responds to after-hours calls, pages, and/or e-mails regarding security problemsParticipates and reviews the creation and upkeep of information security operations processes and documentationParticipates and plans security operations projects as directed by the Manager of Information SecurityAssists in the PCI assessment process as neededOther duties assigned as neededEDUCATION AND EXPERIENCE: Bachelor’s Degree preferred, emphasis in Cyber Security or Information Security is preferredCISSP, CASP, or CISA is preferredGIAC Certified Forensic Analysis, GIAC Certified Incident Handler, or EnCase Certified Examiner strongly preferredGeneral IT experience is required (SOC Analyst, Security Engineer, Security Analyst, System Administrator, Network Administrator, etc.)Hands-on experience installing and troubleshooting security hardware and systemsMinimum 5-6 years in Information Security is requiredMinimum 2 years’ experience in forensic collection strongly preferredMinimum 2 years’ experience in performing eDiscovery activities strongly preferredMinimum 3-4 years’ experience in security incident analysis and response is requiredAdvanced knowledge of information security principles and practices to include, but not limited to, the following areas: Vulnerability Scanning, Security Information and Event Management (SIEM), NG Firewall, NGAV, Encryption, Host Based Security, Data Loss Prevention, Malware PreventionSKILLS:Comprehensive technical knowledge of infrastructure and application developmentGood understanding of the Company’s goals and objectivesKnowledge of applicable data privacy practices and lawsAbility to perform general mathematical calculations for the purpose of creating need assessments and budgetsYou MUST reside in the Oklahoma City metro areaor be in the process of relocating to the OKC metro area in order to be considered for this position because this is not a remote position.#LI-hybridJob Function(s): Information Technology Love’s has been fueling customers’ journeys since 1964. Innovation and perseverance continue to lead the way for the family-owned and -operated business headquartered in Oklahoma City with more than 40,000 team members in North America and Europe. The company’s core business is travel stops and convenience stores with more than 630 locations in 42 states. Love’s continues its commitment to offer products and services that provide value for professional drivers, fleets, four-wheel customers, RVers, alternative fuel and wholesale fuel customers. Giving back to communities Love’s serves and maintaining an inclusive and diverse workplace are hallmarks of the company’s award-winning culture.The Love’s Family of Companies includes:Gemini Motor Transport, one of the industry’s safest trucking fleets.Speedco and Love’s Truck Care, the largest oil change and preventive maintenance and total truck care network.Musket, a rapidly growing, Houston-based commodities supplier and trader.Trillium, a Houston-based alternative fuels expert.TVC Pro-driver, a commercial driver’s license (CDL) protection subscription service.