Cyber Security Analyst II

Description

Cyber Security Analyst II

Location : Hybrid - residing within commutable distance to Newark or Dover, DE

What makes us great

At the heart of our Company is a dedication to delivering energy that drives progress. We put people first, work to keep them safe and build trusting relationships.

Your role in our success :

This position will be responsible for protecting the corporation's critical information and assets by integrating cybersecurity risk management best practices throughout the enterprise. This position will be responsible for detection and analysis of opportunistic and persistent threats, deploying counter measures and conducting risk and vulnerability assessments across the enterprise (including cloud). As a specialist on the Cyber security team, you will participate in detection and response of cyber incidents, assist in recovery of operations and assist in formulating, updating, and communicating short- and long-term organizational cybersecurity strategies and policies. In addition, you will provide technical support to others on adjacent technical teams and the greater organization. The ideal candidate will have a thorough understanding of incident response protocol and have an understanding of nation state threat actors and their TTPs.

What you'll be working on :

• Monitor and analyze security intel generated by company security controls. Lead triage, containment and eradication.
• Participate in threat hunting activities and "deep dive" analysis to maintain a high degree of awareness on the current threat landscape.
• Participate in simulated "adversary emulation" exercises and have working knowledge of Red Team tools such as Atomic Red Team and Caldera.
• Provide effective incident response, by correlating intelligence from IPS systems, endpoints and third parties.
• Administer security awareness training and enterprise vulnerability management solutions, as required.
• Administer and maintain leading enterprise commercial endpoint and network based security solutions
• Develop and produce reports on all activities and incidents to help maintain day to day status,
• Develop and report on trends, and provide focus and situational awareness on all issues.
• Maintain documentation for all systems and create user guides and standard operating procedures.
• Adhere to enterprise change management procedures and corporate security policies, including SLAs for responding to cyber related incidents.
• Responsible for tuning and filtering of events and information, creating custom views and content using all available tools following an approved methodology and with approval and concurrence from management.
• Maintain system baselines and configuration management items, including security event monitoring "policies" in a manner determined and agreed to by management.
• Ensure changes are made using an approval process agreed to in advance.
• Produce reports identifying significant or suspicious security events to appropriate parties. Include latest security threat information and tie back to specific intrusion sets of nation state actors when possible.

Additional Responsibilities

Who you are :

Benefits / what's in it for you?

Chesapeake Utilities Corporation is an equal opportunity employer committed to creating a diverse workforce. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors. Applicants with a disability that need assistance applying for a position may email careers@chpk.com .

Qualifications

Experience

3 - 5 years : Related experience (required)

Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities

This employer is required to notify all applicants of their rights pursuant to federal employment laws.

For further information, please review the Know Your Rights notice from the Department of Labor.