Cyber Security Analyst I

Definition:  Under general supervision of the Cyber Security Manager, will assist in the assessment, development, implementation, and tuning of cyber security processes, controls, and technologies for the Community’s current and future needs.  This job class is treated as FLSA Exempt.

Essential Functions:   Essential functions may vary among positions and may include the following tasks and other characteristics.  This list of tasks is ILLUSTRATIVE ONLY and is not intended to be a comprehensive list of tasks performed by all positions in this classification.

• Utilizes problem solving techniques during security planning, implementation and incident response activities.
• Assumes responsibility for protecting all data and computing assets, documented or otherwise provided in the course of security events.

• Performs data analysis to properly identify false positive and true positive compromise 
• Leverages cyber security technologies to identify indicators of compromise

• Documents security findings and provides incident summary for leadership review
• Participates in cybersecurity exercises and real-time response events.

• Reviews system reporting to identify metrics i.e. system health, control success rate, and additional opportunities for optimization 
• Tests and implements security patches and version upgrades for security tools.

• Support in person cyber security training sessions to improve user community awareness 

• Security Investigations: Completes tasks assigned regarding approved investigation requests.

• Ensures appropriate protocols and tools utilized to complete security reviews such as chain of custody and confidentiality.
• Conducts computer forensic evidence gathering.
• Documents security findings.
• Maintains strict confidentiality.

• IT Audit and Compliance: Supports IT audit / compliance activities as cyber security subject matter expert  

• Gathers data from cyber security tools in support of audit requirements
• Conducts user access audits for community platforms and technologies  
• Ensures timely and accurate cybersecurity audit reviews

• Knowledge of Windows operating systems.
• Knowledge of TCP/IP networking & connectivity.
• Knowledge of common cyber security attack vectors
• Knowledge of data encryption protocols and use cases
• Knowledge of IT system vulnerabilities and mitigations

• Skill communicating with all levels of employees in the organization.
• Skill making formal presentations to groups of various size and levels.
• Skill with written and verbal communications.
• Skill with problem solving and conflict management.

• Ability to use initiative and take corrective action in emergency situations.
• Ability to develop and maintain positive and effective working relationships with all levels of the department and Community.

Experience:

• Direct work experience providing Level III desktop, Level II network, or cyber security support within an enterprise environment. 
• Direct work experience as an IT administrator within an enterprise environment 

• Direct work experience in Cyber Security Assessments or Security Controls Evaluations
• Direct work experience within a Security Operations Center (SOC)
• Direct work experience in the field of Information Assurance 
• Direct work experience with log management platforms such as Elastic or Kibana
• Direct work experience with Microsoft O365 Security Center
• Direct work experience tracking and remediating system vulnerabilities 

Certifications:

• One or more of the following certifications is preferred:
  1. CompTIA Security

Equivalency: Any equivalent combination of education and/or experience that would allow the candidate to satisfactorily perform the duties of this position, will be considered.

Underfill Eligibility: An enrolled Community Member whom closely qualifies for the minimum qualifications for a position may be considered for employment under SRPMIC Policy 2-19, Underfill.

• May be required to complete and Salt River Police Department (SRPD) background investigation and polygraph examination.
• May be required to receive and maintain a Salt River Pima-Maricopa Indian Community, Community Regulatory License, and State Certification (ADOG).
• All applicants applying for jobs will be subject to Pre-Employment Drug Test and extensive Fingerprint and Background Check. In addition, all employees providing services to a campus with children will be subject to the “Community Code of Ordinances”, Chapter 11 “Minors”, Article X. “Investigation of Persons Working with Children”, random drug testing and completion of a background check every five (5) years.

Prior to hire as an employee, applicants will be subject to drug and alcohol testing. Will be required to pass a pre-employment background/fingerprint check. 

"SRPMIC is an Equal Opportunity/Affirmative Action Employer" Preference will be given to a qualified: Community Member Veteran, Community Member, Spouse of Community Member, qualified Native American, and then other qualified candidate.

In order to obtain preference, the following is required: 1) Qualified Community Member Veteran (DD-214) will be required at the time of application submission 2) Qualified Community Member (must provide Tribal I.D at time of application submission),3) Spouse of a Community Member (Marriage License/certificate and spouse Tribal ID or CIB is required at time of application submission), and 4) Native American (Tribal ID or CIB required at time of application submission).

Documents may be submitted by one of the following methods: 

1) attach to application

2) fax (480) 362-5860

3) mail or hand deliver to Human Resources.

Documentation must be received by position closing date. 

The IHS/BIA Form-4432 is not accepted. 

Salary : $97,177 - $136,049