Cyber Security Analyst

Location: This position can be located in our Chicago, IL, or DC office only.

Position Summary:

NAR’s Cyber Security team is looking for a highly motivated Cyber Security Analyst to join our growing team and make their mark. The Cyber Security Analyst will play a lead role in our cybersecurity development journey. The ideal candidate will have a desire to work cross-functionally, analyze our business infrastructure and processes and create innovative solutions that will help NAR prevent ongoing security threats. They will have autonomy and the ability to collaborate with their team members, business colleagues, and customers and become part of a dynamic team. This role will require advanced knowledge of IT systems and processes, cyber security tools, and mitigation techniques while also taking ownership of projects from start to finish.

Duties and Responsibilities:

• Conduct security monitoring and cyber-related investigations and analyze security event logs and triaged alerts.
• Monitor the security operations tools and resources while coordinating with SOC with alerts and findings.
• Identify and document security incidents to enable mitigation of potential cybersecurity defense incidents within the enterprise.
• Monitors external data sources to maintain the currency of cybersecurity defense threat conditions and determine which security issues may have an impact on the enterprise.
• Assist in the scoping and development of new Cybersecurity initiatives
• Acts as the lead to implement and support one or more critical information security processes such as access management, security awareness, access certification, and others.
• Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy.
• Create, modify, and mature vulnerability management reports and metrics, to drive remediation of vulnerabilities throughout the NAR environment.
• Develop, document, and keep current standard operational IT Security procedures. Write and revise online help and other user and technical documentation as necessary for efficient operation of the IT Security Office.
• Conduct IT security training sessions for end-users and technical support staff. Review the training progress and develop new materials. Monitor the awareness platform.
• Take ownership of projects from start to finish of projects
• Keep up to date with the latest news and innovations within Cybersecurity and adjacent fields to ensure projects and visions stay relevant
• Other duties, as assigned

Qualifications:

• Bachelor's or Master’s degree in Computer Science, Cybersecurity, or a related field
• 4+ years of relevant experience as a Cyber Security Analyst, IT Security Analyst, or another security-oriented position is required
• Strong familiarity with Cyber Security best practices, security frameworks, and compliance
• Ability to independently create documentation for new projects and requests and build collaborations within the organization
• Ability to explain tough technical insights to non-technical stakeholders
• Strong problem-solving skills
• Industry security certification, a plus (Sec +, CySA+, SSCP preferred)
• Experience with computer network penetration testing and remediation.
• Understanding of firewalls, proxies, SIEM, antivirus, EDR/MDR, PAM.
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
• Understanding of patch management and understanding business impact.
• Knowledge of current Windows Server, Windows Workstation, Linux, and Active Directory environments
• Written and verbal communication skills to communicate effectively at all levels.
• Ability to operate as a team and/or independently while demonstrating flexibility to changing requirements.
• Exceptional communication skills, as well as an interest in working within a team environment