Sr Security Analyst - Hybrid in Alexandria, VA (FTE/Direct-hire)
Optomi, in partnership with an IT Media company is looking to add a Senior Security Analyst to their growing team! The Senior Security Analyst will be responsible for the design, configuration, testing, and deployment of on-prem and cloud services. The Senior Security Analyst will also provide Incident Response, threat hunting and proactive support of all development activities in both the cloud and on-prem environments.
What You Will Do:
- Evaluate detection processes and procedures to ensure they are well maintained and tested.
- Ensure anomalous activity is detected and the potential impact of events is understood.
- Ensure that information systems and assets are monitored to identify cybersecurity events and verify the effectiveness of protective measures.
- Assist with developing and maturing the current in-house security program (Incident Response SOPs, maturing tools, etc.).
- Ensuring response activities are coordinated with internal and external stakeholders (e.g., external support from service providers).
- Ensuring analysis is conducted to ensure effective response and support recovery activities.
- Work with external MSSP and provide guidance and support, as needed. You will also act as the senior point of contact for incident escalation
- Ensuring response processes and procedures are executed and maintained, to ensure response to detected cybersecurity incidents.
- Ensuring recovery processes and procedures are executed and maintained to ensure restoration of systems or assets affected by cybersecurity incidents.
- Ensuring recovery planning and processes are improved by incorporating lessons learned into future activities.
- Ensuring restoration activities are coordinated with internal and external parties (e.g. coordinating centers, other CSIRTs, and vendors).
Experience Required:
- Minimum of 5 years' cybersecurity experience including at least 2-3 years working in IT as a Systems Admin or Engineer
- GCIH, GCIA, GMON, GCED, or equivalent GIAC defense focused certifications, desired.
- Bachelor's Degree in a related field such as cybersecurity, information technology, or computer science; OR equivalent combination of experience
- Ability to participate as a technical lead on all projects requiring cybersecurity expertise and consultation.
- Ability to lead a Cybersecurity Incident Response Team (CIRT), Computer Security Incident Response Team (CSIRT) and Managed Security Services Partners (MSSPs) in the execution of daily incident response activities.
- Ability to deploy, integrate, configure, and maintain systems which comprise the overall cybersecurity technology stack.
- Ability to communicate complex cybersecurity concepts in a clear and concise manner for laypersons unfamiliar with cybersecurity and/or IT concepts.
- Desire and ability to help drive organizational adoption and buy-in of cybersecurity policies and standards across the ecosystem.