Our client is an established, privately held, growing, New York-based government contractor. Our client’s focus is in providing Information Technology (IT) Services to city, state and federal government clients. We are currently seeking an experienced IT Cyber Security Operations Analyst with patching experience, to work in a full-time hybrid role requiring both remote work and onsite work at a client location in Buffalo, NY for one week every 3-4 weeks..

Reporting to the Director of Cybersecurity, the IT Security Operations Analyst is responsible for all day-to-day operational management of cyber-related events, incidents, and changes. The ideal candidate will have relevant technical education and IT Security certifications and 6 years of demonstrated relevant experience in cyber security operations, patching, incident response, vulnerability management, network security, server security, endpoint security and web security. Able to work collaboratively as a trusted member of the IT Cybersecurity team.

PRIMARY RESPONSIBILITIES INCLUDE:

• Work closely with the Customer Security Operations Center (SOC) to address escalated SOC cases. This may include determining if an activity was legitimate or malicious, assessing risk levels, mitigating risks associated with detected attacks or likely threats, or escalation of cases following the incident response plan in severe cases.
• Perform daily tasks including threat report reviews and execution of follow-up actions, patching, scorecard and application control.
• Receive threat advisories from multiple sources and determine if the advisory is applicable to the client environment and assist other support groups in reducing the possible impact of the threat.
• Use a variety of tools to investigate cases. The tools cover vulnerability, patch, and asset management modules, such as Qualys, Trend Vision, ManagedEngine, Palo Alto.
• Use the local IT Service Management ticketing system to execute incident and change management related tickets throughout their life cycle.
• Participates in various projects designed to improve the defensive posture of the entire organization. These projects may include mitigation of audit or penetration test findings, policy reviews, or incident response tabletop exercises.
• Keep up-to-date on cybersecurity developments, advancements, practices and technologies.

CANDIDATE REQUIREMENTS INCLUDE:

• Bachelor’s degree in Computer Science, Cyber Security, or STEM-related field.
• ISC2 Certified in Cybersecurity and / or Comptia Security . Additional relevant certifications (e.g., Security , CEH, CISSP, GCIA, SSCP), as well as, programming, threat hunting, and pen testing skills are a plus.
• 6 years of demonstrated relevant experience in cyber security operations, patching, incident response, vulnerability management, network security, server security, endpoint security and web security.
• In-depth knowledge of various cyber security technologies, including patching, firewalls,, IDS/IPS, EDR, BYOD, SIEM and endpoint protection.
• Excellent verbal, written and interpersonal communication skills with clients, team members, technical staff, and management. Able to interface, communicate and maintain effective relationships with team members and all levels of management on an ongoing basis and work as a trusted IT cybersecurity professional.
• Demonstrated experience effectively engaging with mid-senior level stakeholders. Able to influence and negotiate with senior leaders across functions (including experience in communications with external parties).
• Demonstrated ability to collaborate effectively with cross-functional teams across different time zones.
• Ability to work in a fast-paced environment and manage multiple tasks simultaneously.
• Experienced in patching, incident / crisis management including ownership, assessment and initial support, escalation / notification, business impact analysis, resolution tracking and senior escalations.
• Experienced in exercise design, planning and execution.
• Demonstrated understanding of Project Management principles and practices.
• Key Competencies: Collaborative Work Style, Customer Focused, Problem-Solver, Professional, Resourceful, Results-Focused, Solutions Focused, Self-Motivated, Team-Player.
• Must be able to pass a required background check and/or security clearance to work on government projects.
• Legal authorization to work in the U.S. is required. The company will not sponsor individuals for employment visas for this job at this time.

POSITION LOCATION:
Hybrid role in the New York, NY metro area. Must be able to commute into New York City and work onsite at a client location in Buffalo, NY for one week every 3-4 weeks..

TEAM RESPONSIBILITY:

Serve as a key member of the client's IT Cybersecurity team. Collaborate with internal team members and client. Mentor team members.

K EY RELATIONSHIPS / STAKEHOLDERS :

• Director of Cybersecurity
• Internal Team Members and SME's
• Client and Technology Partners

RELOCATION ELIGIBILITY:
No relocation assistance provided. Local, qualified New York City metro area candidates will be given preference and priority. Qualified candidates willing to self-relocate to the New York City metro area will also be considered.

COMPENSATION & BENEFITS INFORMATION:

• Base Salary Range: $75,000 - $95,000, commensurate with experience and qualifications
• Benefits Include: Health & Dental Insurance, Paid Time Off, 401-K with match, FSA, Company Paid Training, etc.

POSSIBLE COMPARABLE TITLES:

• Cybersecurity Analyst / Specialist
• Technology Threat Analyst / Specialist
• Cyber Defense Operator
• Security Operations Specialist (SOC)