The Cyber Security Analyst II at Westlake is tasked with the administration and oversight of security monitoring tools to protect the IT infrastructure. This role involves proactive daily management of incident tickets, prompt resolution of vulnerabilities, and collaboration with both technical and non-technical stakeholders to address security compromises. The Analyst II ensures the integrity and security of desktops, servers, printers, and network infrastructure equipment, while staying informed about the latest cybersecurity threats and trends.
DUTIES AND RESPONSIBILITIES
May include, but are not limited to, the following:
Administer tools that monitor IT Security at Westlake, ensuring a secure computing environment that includes desktops, servers, printers, and network infrastructure equipment.
Collaborate with other technical and non-technical users to resolve identified vulnerabilities and security compromises.
Maintain and update documented Cyber Security policies and procedures to reflect current best practices and organizational requirements.
Make recommendations for enhancing Cyber Security and controls to stay ahead of emerging threats.
Manage and respond to cybersecurity incident tickets, ensuring that each is addressed promptly, with ongoing updates provided to stakeholders until resolution.
Work with IT Management & Auditors to coordinate and conduct security audits, including risk assessment and analysis, to ensure robust security measures are in place.
Research attempted security breaches and rectify security weaknesses
Manage the Vulnerability Management program, including bi-weekly team reviews, policy and procedure updates, regular vulnerability scanning, tracking and reporting.
Administer critical security systems including Firewalls, Endpoint Security, Intrusion Prevention Devices, Network Access Control Systems, Internet Filtering systems, Email SPAM Filtering systems, and Phishing exercise products.
Participate in a rotation schedule to provide on-call support for critical security incidents and urgent issues outside of regular business hours.
Any additional responsibilities or tasks as assigned
EDUCATION, EXPERIENCE AND QUALIFICATIONS
Bachelor's degree in Computer Science, IT Security, Cyber Security or a related field is strongly preferred, or must have at least three years of relevant network / cyber security experience. Masters degree in Cyber Security will be recognized for years of experience.
CISSP and other security certifications a plus
Min. of 1 year of related cyber security experience required:
Demonstrated experience in managing and configuring Anti-Virus solutions, Firewalls, and understanding of network protocols and application security principles.
Practical experience with Security Information and Event Management (SIEM) solutions, including monitoring, analyzing, and responding to security events.
Proficiency in vulnerability scanning tools and technologies, with the ability to conduct scans, analyze results, and guide remediation efforts.
Strong foundation in network and server architecture, with an emphasis on security protocols and best practices.
Comprehensive knowledge of the OSI model and its application in troubleshooting and securing network layers.
Experience with scripting languages (such as Python, PowerShell, or Bash) to automate security tasks is highly beneficial.
Familiarity with forensic analysis techniques and data collection processes for incident response and investigations.
PHYSICAL DEMANDS
While performing the duties of this job, the employee is frequently required to sit; stand; walk; use hands to touch, handle, or feel; reach with hands and arms; and talk or hear. The employee is occasionally required to stoop, kneel, or crouch. The employee must regularly lift and/or move up to 10 pounds. Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception, and ability to adjust focus.
WORK ENVIRONMENT
The noise level in the work environment is usually moderate as normally based in an office. Some of the work may be required in the operating units which can require usage of required PPE including safety glasses, hearing protection, etc. May also result in exposure to outside elements and may require usage of stairs and elevators. Travel including air travel or auto travel may occasionally be required.