Company Overview:
CB&I® is the world’s leading designer and builder of storage facilities, tanks and terminals. With more than 60,000 structures completed throughout our 135+ year history, we have the global expertise and strategically-located operations to provide customers world-class storage solutions for even the most complex energy infrastructure projects.
Overview:
The Sr Cybersecurity Analyst is responsible for monitoring and responding to security incidents, implementing robust security measures, and developing strategies to mitigate risks. The Sr Cybersecurity Analyst helps ensure the integrity, confidentiality, and availability of CB&I’s information assets.
This position is an Individual Contributor role. The role directly reports to the Director of Cybersecurity and routinely interacts with Global IT, Project Management, Engineering, Legal, Risk Management, and Outsourced Cybersecurity vendors.

Responsibilities:

• Assesses information risk and facilitates remediation of identified vulnerabilities with the CB&I network, systems and applications. Reports on findings and recommendations for corrective action.
• Performs vulnerability assessments as assigned utilizing IT security tools and methodologies.
• Performs assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program.
• Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios.
• Facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings.
• Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications.
• Assists in all IT audits, IT risk assessments and regulatory compliance.
• Serve as project manager/lead within IT security projects.
• Promote awareness of applicable regulatory standards, upstream risks and industry best practices across CB&I.
• Act as a Tier 3 escalation point for security incidents and investigations.
• Manage and optimize security tools and platforms across the enterprise.
• Create, review, and troubleshoot Palo Alto Next-Gen Firewall rulesets.
• Administer and monitor CrowdStrike EDR and Proofpoint Email Security solutions.
• Operate and fine-tune SIEM platforms, including alert use case creation and optimization.
• Leverage Microsoft Cloud Security Tools (Defender for Endpoint, Defender for Identity, Purview, etc.) to secure cloud environments.
• Lead the Vulnerability Management program, including scanning, prioritization, remediation coordination, and reporting.
• Collaborate with and delegate tasks to MSSPs, ensuring SLAs and quality standards are met.
• Develop and maintain security documentation, runbooks, and incident response procedures.
• Stay current with emerging threats, vulnerabilities, and regulatory requirements.

Qualifications:

• Bachelor’s degree in Cybersecurity, Computer Science, or related field.
• Completion of a recognized cybersecurity training program (e.g., SANS, NIST NICE Framework-aligned bootcamps).
• Industry certifications such as:o CompTIA Security+, CySA+o Certified Ethical Hacker (CEH)o GIAC certifications (e.g., GSEC, GCIA, GCIH)o Microsoft SC-200, SC-300o CISSP or CISM (for more senior candidates)
• 10 Years of experience in Information Technology, 7+ years of hands-on experience in cybersecurity roles.
• Experience with a global company preferred.
• Strong experience with:o Palo Alto Networks firewalls (ruleset creation, troubleshooting)o CrowdStrike Falcono Proofpoint Email Securityo Microsoft Security Suite (Defender, Sentinel, Purview, etc.)o SIEM platforms (e.g., Splunk, Sentinel, QRadar, Elastic (ELK))
• Proven experience interoperating with MSSPs, third-party security vendors, and or clients.

Skills and Behaviors:

• In addition to providing technical leadership, build and nurture strong partnerships across business, engineering, security, and operations teams, consistently upholding the organization’s vision, core values, and business principles.
• Strong assessment and analytical expertise to interpret outputs from monitoring and reporting tools to enable proactive identification of potential problem areas and implement targeted solutions to mitigate risks before they affect operations.
• Strong knowledge of networking concepts, network virtualization technologies, such as SDN (Software-Defined Networking) and virtual private networks (VPNs), protocols, and technologies, including TCP/IP, IP Sec, DNS, DHCP, BGP, LAN/WAN, routing, switching, and wireless networks
• In-depth understanding of network security principles and best practices, including firewalls, intrusion detection systems, access controls, encryption techniques, enterprise and data center networks, cloud infrastructure, VoIP, third-party integration, and Wireless.
• Strong knowledge of OSI and TCP/IP reference models, IP addressing, IP Subnetting, VLSM, QoS, VXLAN, backup, Micro-segmentation, security zones, security boundaries, bandwidth efficiency, high availability, and redundancy.
• Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001).
• Solid understanding of encryption technologies.
• Solid understanding of endpoint protection, and cloud security principles.
• Strong knowledge of cybersecurity hardware and software configuration using hands-on and scripting.
• Familiarity with:o Threat intelligence platforms (TIPs)o SOAR toolso Zero Trust Architectureo Cloud platforms (Azure, AWS, GCP)
• Understanding of OWASP, CVSS, and the MITRE ATT&CK framework.
• Must have excellent organizational, project management, and communication skills.
• Leverages communication and collaboration skills to solve problems with global peers across various functions.
• Ability to perform peer reviews of work products and documents.
• Proactively embraces and promotes the company’s values and culture, including diversity & inclusion and a healthy and safe work environment.
• Possesses strong verbal & written communication skills in English, with demonstrated experience in effectively speaking to all levels of the organization, including executive level, SMEs (Subject Matter Experts), and Principal Technologists.

• Assesses information risk and facilitates remediation of identified vulnerabilities with the CB&I network, systems and applications. Reports on findings and recommendations for corrective action.
• Performs vulnerability assessments as assigned utilizing IT security tools and methodologies.
• Performs assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program.
• Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios.
• Facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings.
• Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications.
• Assists in all IT audits, IT risk assessments and regulatory compliance.
• Serve as project manager/lead within IT security projects.
• Promote awareness of applicable regulatory standards, upstream risks and industry best practices across CB&I.
• Act as a Tier 3 escalation point for security incidents and investigations.
• Manage and optimize security tools and platforms across the enterprise.
• Create, review, and troubleshoot Palo Alto Next-Gen Firewall rulesets.
• Administer and monitor CrowdStrike EDR and Proofpoint Email Security solutions.
• Operate and fine-tune SIEM platforms, including alert use case creation and optimization.
• Leverage Microsoft Cloud Security Tools (Defender for Endpoint, Defender for Identity, Purview, etc.) to secure cloud environments.
• Lead the Vulnerability Management program, including scanning, prioritization, remediation coordination, and reporting.
• Collaborate with and delegate tasks to MSSPs, ensuring SLAs and quality standards are met.
• Develop and maintain security documentation, runbooks, and incident response procedures.
• Stay current with emerging threats, vulnerabilities, and regulatory requirements