Cybersecurity Senior Defense Analyst

JOB SUMMARY: The Cybersecurity Senior Defense Analyst will report to the Manager, Information Security at Securitas. As a member of the Cybersecurity team, the position will actively contribute to the maturation of the company's cybersecurity strategy and programs based on key processes, practices, and standards necessary to manage the risks and cybersecurity controls for the Securitas lines of business. The role is responsible for support efforts to protect the organization's digital infrastructure from cyber threats. This role involves analyzing and responding to complex security incidents, managing advanced security tools, and developing strategies to mitigate risks. The Senior Analyst will also work closely with cross-functional teams to ensure the organization's security posture remains robust and up to date with evolving threats. ESSENTIAL FUNCTIONS: • The functions listed describe the business purpose of this job or position. Specific duties or tasks may vary and be documented separately. An associate might or might not be required to perform all functions listed. Additional duties may be assigned, and functions may be modified, according to business necessity. • All assigned duties or tasks are deemed to be part of the essential functions, unless such duties or tasks are unrelated to the functions listed, in which case they are deemed to be other (non-essential) functions. • Associates are held accountable for successful job performance. Job performance standards may be documented separately, and may include functions, objectives, duties or tasks not specifically listed herein. • In performing functions, duties or tasks, associates are required to know and follow safe work practices, and to be aware of company policies and procedures related to job safety, including safety rules and regulations. Associates are required to notify superiors upon becoming aware of unsafe working conditions. • All functions, duties or tasks are to be carried out in an honest, ethical and professional manner, and to be performed in conformance with applicable company policies and procedures. In the event of uncertainty or lack of knowledge of company policies and procedures, associates are required to request clarification or explanations from superiors or authorized company representatives. Scope of Responsibilities (Essential Functions) • Monitor and analyze security alerts from a variety of detection systems, including SIEM (Security Information and Event Management) tools and in conjunction with the MSSP/SOC service provider. • Lead incident response efforts, conducting root cause analysis, containment, eradication, and recovery activities. • Execute incident response playbooks. • Tune the alarms to minimize the false positives. • Prepare detailed reports on security incidents, trends, and recommendations for improvements. • Identify the gap in detection coverage and manage the remediation plan. • Develop and implement advanced detection techniques to identify potential threats, vulnerabilities, or attacks. • Operational support for the overall risk management program. • Measure and act on critical metrics with a focus on continuous improvement to align with risk management framework. • Coordinate the resolution of cybersecurity risks by working with business and IT owners. • Maintain thorough documentation of incidents, investigations, and outcomes. Additional Responsibilities • Provide executive summaries and briefings for senior management on the organization's security posture. • Oversee day-to-day security operations and guide junior analysts in managing security tools and responding to incidents. • Perform regular threat hunting activities to proactively discover threats within the organization. • Ensure compliance with Securitas security policies and procedures. • Function as a liaison between security teams and other departments to promote security awareness and best practices. • Mentor junior analysts and provide guidance on advanced security topics and tools. • Conduct internal training sessions on emerging threats and mitigation strategies. • Identify gaps in operational procedures and documentation & aid to close them. • Consult and facilitate with Securitas stakeholders on cybersecurity matters including projects and with compliance to policy, procedures, standards, and additional guidelines. • Keeps abreast of the latest cybersecurity, privacy, and regulatory concerns and best practices. MINIMUM QUALIFICATIONS AT ENTRY: Additional qualifications may be specified and receive preference, depending upon the nature of the position. EDUCATION/EXPERIENCE: • Bachelor's degree in computer science, Information Security, or a related field. • 5+ years of experience in cybersecurity or IT security roles • Proficiency in incident response, threat analysis, and vulnerability management. • Strong understanding of network protocols, operating systems, and security technologies such as firewalls, IDS/IPS, EDR, and SIEM. • Relevant certifications such as CISSP, CISM, CEH, or GIAC are highly preferred. • Experience with regulatory compliance and security standards (e.g., NIST, ISO 27001, GDPR). COMPETENCIES: (as demonstrated through experience, training, and/or testing): • Advanced problem-solving and analytical abilities. • Effective communication skills, capable of explaining technical concepts to non-technical stakeholders. • Experience with scripting and automation for security operations is a plus. • Ability to collaborate effectively with people at various levels in the organization. • Initiative-taking and able to manage tasks with minimal supervision. • Understanding of privacy laws and regulations • Proficiency with Microsoft Word, Excel, Access, Project, and Outlook • Strong PowerPoint presentation skills • Working knowledge of cybersecurity concepts and controls • Collaborator with transparent communication skills, a positive attitude and strong but flexible work ethic. • Operational excellence. • Securitas mindset: can-do; collaborative; respectful; optimistic WORKING CONDITIONS AND PHYSICAL/MENTAL DEMANDS: With or without reasonable accommodation, requires the physical and mental capacity to perform effectively all essential functions. In addition to other demands, the demands of the job include: • Maintaining composure in dealing with executives, clients, prospects, and staff, in group settings and in situations requiring high performance and results. • Must undergo and meet company standards for controlled substance testing and behavioral selection survey. • Handling and being exposed to sensitive and confidential information. • Required ability to handle multiple tasks concurrently. • Up to 25% travel • Occasional lifting and/or moving up to 10 pounds. Securitas is committed to diversity, equity, inclusion and belonging in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other applicable legally protected characteristic. #AF-SSCorp About Us Securitas employees come from all walks of life, bringing with them a variety of distinctive skills and perspectives. United through our common purpose, we provide the security needed to safeguard our clients' assets and people. Our core values - Integrity, Vigilance and Helpfulness - are represented by the three red dots in the Securitas logo. If you live by these values, we're looking for you to join the Securitas team. About the Team Our Company Mission: Securitas' mission is to protect homes, workplaces, and communities by providing the security services they need to protect their assets, safeguard their people, and maintain their ability to generate profits. Our Values: Securitas' core values - Integrity, Vigilance and Helpfulness - are the foundation for our employees to build trust with customers, colleagues, and the surrounding community. Integrity: Securitas employees are honest and trusted by customers to safeguard their premises and valuables. We don't compromise on integrity and create an open forum for our employees and customers to voice opinions, report improprieties, and share information. Vigilance: Seeing, hearing, and evaluating. A Securitas employee is always attentive and often notices things that others don't. Their vigilance is necessary in order to be aware of potential risks or incidents that may take place on our customers' premises. Helpfulness: As part of an on-going effort to ensure safety, Securitas employees are always ready to help if an incident occurs that requires intervention regardless of whether or not it is directly related to their job.

Created: 2024-10-23