Roush Enterprises
Senior Cyber Security Analyst
Roush Enterprises, Troy, Michigan, United States, 48083
We work alongside the best and brightest to do incredibly cool things you wouldn't believe. At Roush, you're part of building the future. Are you someone that has a passion for providing innovated solutions to complex challenges? Do you want to work someplace where creativity and new ideas are encouraged? If so, then keep reading. We fuse technology and engineering to provide product development solutions to customers in a diverse range of industries. Widely recognized for providing engineering, testing, prototype, and manufacturing services to the transportation industry, Roush also provides significant support to the aerospace, defense, and theme park industries. With over 2,400 employees in facilities throughout the United States, Europe, Asia, and South America, our unique combination of creativity and tenacity activates big ideas on a global stage. Job Summary: The Senior Cyber Security Analyst will protect the organization from cyber-attacks by monitoring the information technology systems and evaluating threats as they arise. The role will also support in the implementation and management of cyber security program, data loss prevention, vulnerability assessments, incident management and implementing/managing security tools. This position is located in Troy, MI. As Senior Cyber Security Analyst, you will: Develop information security program and implement NIST-800-171/CMMC Framework Manage (SSP) system security plan, (POAM) plan of action and milestone and update (SPRS) Supplier performance risk system score Lead MS365/O365 security & compliance implementation by ensuring security requirements are satisfied and help adjust policy as needed Manage the SIEM solution and identify, triage, and assist in remediation of cyber security alerts Define technical and business processes and policies related to data protection strategies as well as implementing DLP solutions to provide, security, privacy, and integrity Perform vulnerability assessment and assist in remediation, and interface with technical teams to advocate for appropriate remediation responses Audit endpoint & server patching processes to identify gaps and work with technical teams to resolve issues Conduct network/host monitoring and intrusion detection analysis using various tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, SIEM, NAC, EDR, DLP, Cisco Umbrella and host-based security tools Lead in conducting security incident investigations, act as a security subject matter expert during cyber incident response and collaborate with technical teams to assure incident(s) is/are resolved Monitor the corporate network for vulnerabilities, security threats, and breaches and work to remediate anomalies/breaches Research the latest cyber security trends and apply knowledge as necessary Lead cyber security education and simulated phishing tests Work with 3rd party security vendors such as a MSSP (Managed Security Service Provider) Work with Cyber Security/IT personnel throughout Roush Minimum qualifications to be considered: Must be a U.S Citizen Must be able to secure and maintain a Department of Defense security clearance Bachelor's degree in computer science, computer engineering, or related field Minimum 5 years of experience managing a security information and event management (SIEM) systems or other cyber security-related monitoring solutions and driving remediation based on SIEM outputs Minimum 5 years of experience managing vulnerabilities, patch management, and remediation Minimum 5 years of experience with cloud-delivered commercial and government-based solutions such as Microsoft M365-E5/Azure, and experience with IT backup and disaster recovery systems Working knowledge of NIST Framework, M