Cyber Security Analyst II

***This position is based in our SICK, Bloomington MN office. Working in office four days a week and one day remote. 

ABOUT SICK: 

SICK is a leading global provider of intelligent sensors, systems, and services for factory, logistics, and process automation applications. With more than 1,000 patents, innovation and technology are at its core. This focus on innovation and “Sensor Intelligence” have allowed SICK to develop products for every phase of production in the automotive, packaging, electronics, food and beverage, consumer goods, storage and conveyor, robotics, material handling, and more. In addition, SICK’s focus on Sensor Intelligence allows us to make Industry 4.0, or the Industrial Internet of Things, a reality for their customers. 

COMPENSATION & BENEFITS: 

Our base salary is one part of our total compensation package and is determined within a range. The starting base salary range for this position is listed below. Actual starting salary will be based on a variety of factors including experience, skill set, education, performance, license/certifications, business needs, and other job-related factors permitted by law. 

Starting Base Annual Salary Range:

$74,550 – $112,750 

Benefits:

SICK’s benefit package has long been recognized and valued because of its comprehensiveness and competitiveness in the market. To help our employees make the most of their overall well-being, we are thrilled to provide an outstanding benefits package! SICK offers 17 PTO days starting, medical insurance, vision insurance, dental insurance, disability/life benefits, 401k retirement plan and more. Click here to view more about our benefits! 

POSITION SUMMARY:

This position is responsible for protecting the companies’ network and systems from cyber-attacks and is part of a newly formed global cyber security team which makes up the Security Operations Center (SOC). This position serves as the local subject matter expert and reports to the Senior Manager,  Information  Technology with a dotted reporting line to our Global HQ in Germany. 

RESPONSIBILITIES:

• Analyze and assess a variety of security incidents in our central security platforms that range in complexity (threat hunting).
• Ongoing development and review of scenario incidents and response (i.e. Phishing Attacks, Malicious Attachments and Malware, Suspicious password requests and Unauthorized network access).
• Contribute to the development of a playbook that outlines how to respond to various scenario incidents including working with end-users and vendors.
• Monitor and detect attacks and deviations from normal system behavior.
• Monitor, secure and protect systems from unauthorized access and damaging events.
• Lead the development, implementation, and tuning of monitoring use cases as needed upon emergence of new applications, threats, and policies.
• Generate and analyze reports across multiple tools and platforms looking for patterns of attack.
• Build formal threat and incident response processes, including analysis, triage and escalation of security events, coordination and tracking of response activities, and status in partnership with the global team
• Development and maintenance of process documentation, procedures, and playbooks
• Detailed documentation of incidents in a ticket system / SIEM system.
• Close cooperation with Computer Security Incident Response Team (CSIRT) and other security departments.
• Collaborate and contribute to an international team.
• Research and keep abreast of IT trends and cyber-attack methods. 
• Serve as a mentor for junior level analysts on the team.
• Carry out other duties and responsibilities as may be assigned or required. 

QUALIFICATIONS:

Education and Experience: 

• Bachelor’s degree in cyber security, business informatics, information technology or comparable qualification or additional equivalent work experience.
• Master’s degree, advanced education or relevant certifications in Cyber Security preferred
• 5 years’ experience in a Security Operations Center or security-based role
• Expert knowledge of complex IT infrastructures and strong knowledge of firewall, proxy, network, server and client architecture and cloud security, 

Other Qualifications: 

• Experience in network and cloud security or with SIEM solutions required
• Global team experience is a plus
• Strong teamwork and communication skills
• Comfortable speaking technically with analysts and strategically with senior executives
• Conceptual skills as well as analytical, solution-oriented way of working
• High customer and service orientation
• Able and willing to work alternative schedules including weekend, and on-call hours as needed
• Legally permitted to work in the United States
• Able to work in a general office environment
• Ability to travel as needed for additional training and internal meetings which may include international travel 

CORE COMPETENCIES:

Ethics and Integrity Personal Growth and Learning, Customer Focus, Personal Accountable, Building Effective Relationships 

If you thrive in a fast-paced, team-oriented work environment that offers challenges and the opportunity for growth, we are the place for you! SICK has several locations throughout domestic US and offers competitive wages and an excellent benefits program. Qualified candidates can apply online by clicking the apply online button. Visit us at www.sickusa.com. 

SICK is an equal opportunity employer that considers all qualified applicants without regard to race, color, religion, sex, sexual orientation, national origin, disability, or protected veteran status.