Client: Utilities CompanyPosition: Cyber Security Analyst Location: Apollo Beach, FL Compensation: $100K-$110KWork Authorization: ONLY USC or GC Holder for this permanent positionBenefits: 401K (6% match), Pension plan, Stock plan, annual merit increase, and annual targeted 10% (level 1 and 2), targeted 15% for level 3 company performance paid bonusEDUCATION: Required: High School Diploma or equivalent. Preferred: Bachelor’s Degree in Computer Science, Information Systems, or other IT related discipline. LISCENSES/CERTIFICATIONS: Required: From the list of certification vendors, one related Information Security professional certification or ability to obtain via self-study within one year of hire date (ex: CISCO, (ISC)2, GIAC, ISA, ISACA, CompTIA, e-Council, etc.). Preferred: three or more of the following or similar Information Security professional certifications (ex: ACE, CCE, CAP, CEH, CCNA, CCNP, CISA, CISM, CISSP, CRISC, EnCE, GCCC, GCDA, GCED, GCFA, GCFE, GCIA, GCIH, GCWN, GICSP, GMON, GNFA, GPEN, GPPA, GREM, GWAPT, GXPN, OSCP, SSCP). Scope: Evaluate OT cyber assets and assign criticality rating to cyber assets and develop remediation plan for gaps in compliance of the systems with the OT cybersecurity program. Has increased responsibilities in security intelligence monitoring, incident response, and development of cybersecurity maintenance procedures. May serve as a project lead and mentor Cyber Security Analyst. Works under general supervision.

Experience: • 6 years of related Cyber Security, industrial automation, IT, OT, or Technical (hands-on networking, telecommunications [radios, satellites, communications, etc.], hardware, software) experience.

• Advanced working knowledge of major operating system security (Windows, Mac OS, Linux/Unix), web server security, and network security.
• Advanced working knowledge of major security systems and functions for incident response, monitoring and forensic activities: Firewalls, IDS/IPS, Antivirus/Antimalware, SIEM, Incident Response, Threat Prevention, Web/Application Control Filtering, Email Filtering, NetFlow Analysis, Endpoint Security,
• Configuration and Change Management, File Integrity Monitoring, and DLP.
• Advanced working knowledge of log, network, and system forensic investigation techniques.
• Advanced working knowledge of networking protocols and systems administration.
• Advanced working knowledge of identifying and capturing indicators of compromise and methods for detecting them within incidents.
• Advanced working knowledge with packet analysis and malware analysis.
• Advanced working knowledge (hands-on experience) of scripting in languages such as Python, Bash or PowerShell.
• Advanced working knowledge of penetration testing technologies and procedures.
• Advanced working knowledge of the processes that ensure compliance with regulatory or industry requirements such as NERC CIP, SOX and PCI.

Responsibilities: • Evaluates network architecture, system configuration, and external connection layout to ensure compliance of operational technology systems with cybersecurity program.

• Reviews vendor manuals, training materials, industry standards, and develops cybersecurity maintenance procedures.
• Provides activities planning guidance, feedback on work completed, and training to Cybersecurity Analysts.
• Evaluates new CVEs for applicability to OT cyber assets.

• Reviews vendor manuals, training materials, industry standards, and develops cybersecurity maintenance procedures.
• Provides activities planning guidance, feedback on work completed, and training to Cybersecurity Analysts.
• Evaluates new CVEs for applicability to OT cyber assets