GDI Infotech
GDI Infotech is hiring: Cybersecurity Analyst in Livonia
GDI Infotech, Livonia, MI, US,
Cybersecurity Analyst 12 months, Contract position U.S. Citizen or U.S. Permanent Resident allowing for International Traffic in Arms Regulations (ITAR) compliance. GDI Infotech is seeking a Cyber Security Analyst II role to protect itself from cyber-attacks by monitoring the systems and remediating threats for our manufacturing client. Job Summary: The role will monitor the systems and remediate threats, support implementation and management of cyber security policies, data loss prevention, CASB, vulnerability assessments, incident management and implementing/managing security tools. Essential Duties and Responsibilities: • Manage the SIEM solution and identify, triage, and remediate cyber security alerts. • Lead MS-365 security & compliance implementation by ensuring security requirements is satisfied. • Define technical and business processes and policies related to data protection strategies as well as implementing DLP solution to provide, security, privacy, and integrity. • Perform vulnerability assessment and remediation, and interface with technical teams to advocate for appropriate remediation response. • Audit endpoint & server patching processes to identify gaps and work with technical teams to resolve issues. • Monitor the corporate network for security threats and breaches and remediate anomalies/breaches. • Conduct network monitoring and intrusion detection analysis using various tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, SIEM, NAC, EDR, DLP, Cisco Umbrella and host-based security tools. • Conduct security incident investigations, act as a security matter expert during cyber incident response and collaborate with technical teams to assure incident resolution is resolved. • Research the latest cyber security trends and approaches for remediation. • Lead cyber security education and simulated phishing tests. Required Education and Experience: • Bachelor's degree in computer science, Computer Engineering, or related experience. • Minimum of 5 years of experience managing a security information and event management (SIEM) system or other cybersecurity-related monitoring solutions and driving remediation based on SIEM outputs. • U.S. Citizen or U.S. Permanent Resident allowing for International Traffic in Arms Regulations (ITAR) compliance. • 5 years' experience with cloud-delivered commercial and government-based solutions such as Microsoft M365-E5/Azure, Amazon Web Services and Google Cloud Platform, and experience with IT backup and disaster recovery systems. • Working knowledge of NIST CSF, 800-171, CMMC, MS-365 Security & Compliance, DLP, SIEM, CrowdStrike, Cisco Umbrella, Incident management, TCP/IP (Transmission Control Protocol/Internet Protocol), DNS (Domain Name System), and DHCP (Dynamic Host Configuration Protocol). • Knowledge of firewalls, switches, servers (Windows, LINUX) and databases. • Understanding and proficiency with SAN (Storage Area Network) and NAS (Network Attached Storage), Local Area Network (LAN) and Wide Area Network (WAN) concepts and configurations such as routing, cabling, VPN (Virtual Private Network), and ISPs (Internet Service Providers) options and capabilities. • Ability to act effectively as a technical resource in annual disaster recovery testing initiatives. • Excellent communication skills including ability to interact effectively with customers, vendors, and team members and strong leadership and organizational skills. Preferred Education and Experience: • Minimum 5 years of professional experience supporting, securing, and maintaining networks, servers, and cloud environments. • Certification(s) in information security such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), etc. • Experience with system installation, configuration, and analysis and capacity planning and performance monitoring techniques and tools. • Working knowledge of network performance monitoring solutions such as SolarWinds or Nagios. • Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). • Knowledge of a project management and diagramming and vector graphics applications such as Microsoft Project and Microsoft Visio, respectively.