NetJets & EJM
Cybersecurity Analyst, Lead
NetJets & EJM, Columbus, Ohio, 43224
Purpose of Position The Cybersecurity Analyst, Lead contributes to the strategic and technical direction of NetJets' Cybersecurity Operations infrastructure. This role plays a pivotal part in shaping cybersecurity standards and implementing security controls, with a focus on security code development, enhancing detection capabilities, engineering security alerts, and responding to incidents. The ideal candidate will demonstrate expertise in cybersecurity engineering, threat intelligence, incident response, code security, and the implementation of cybersecurity tools. This position requires a high degree of adaptability, with responsibilities across multiple high-profile projects. Tasks and Responsibilities Develop and oversee cybersecurity controls, ensuring alignment with NetJets' security policies and standards. Assist with leading implementation of cybersecurity tools, including SIEM engineering, DevOps development for security, and endpoint detection. Conduct detailed triage for security tickets and provide timely responses to cybersecurity incidents. Collaborate with cross-functional teams, including Cybersecurity Incident Responders, Threat Intelligence Analysts, and Cybersecurity Architects, to advance NetJets' cybersecurity posture. Maintain awareness of the threat landscape and provide insights on potential risks and mitigation strategies. Conduct data analysis on security monitoring outputs, coordinating remediation patching as necessary. Document policies, procedures, and standards based on guidance from Corporate Security Management. Advise various teams on cyber risks, mitigation measures, and strategies to maintain compliance with security controls. Assist in ongoing security audits and assessments to ensure compliance with company policies and regulatory requirements. Participate in incident response, offering technical security expertise in support of critical events. Education Bachelor's in Information Technology or Computer Information Systems Certifications and Licenses Years of Experience 4-6 years of experience Core Competencies Strives for Positive Results Curiosity Collaboration Adaptability Service-Oriented Knowledge, Skills, Abilities and Other (KSAOs) Strong organizational, interpersonal, and communication skills. 4-6 years of experience with various standards (e.g., PCI/DSS, SOX, NIST, HIPAA). Certifications preferred: CISA, CISSP, CEH, GSEC, Security In-depth understanding of security technologies, including NextGen firewalls, endpoint security, DLP, and vulnerability management. Proven ability to manage changing workloads, prioritize tasks, and deliver quality work within required timeframes. Proficiency in security monitoring and analysis tools (e.g., SIEM). Solid understanding of web application security (OWASP Top 10) and cybersecurity best practices. Ability to work independently, conduct in-depth research, and adapt quickly to new technologies. Experience in security incident response and familiarity with threat intelligence operations.