Cyber Security Specialist

Job Summary

We are seeking a highly skilled Cyber Security Specialist to join our team. The ideal candidate will be responsible for ensuring the security of our digital assets by implementing and managing security measures, conducting regular security assessments, and staying up-to-date with the latest cyber threats. This role requires a proactive and detail-oriented individual with a deep understanding of cybersecurity principles and practices.

Job Type: Full-time/On-Site

Essential Functions / General Accountabilities

• Training Management: Assign and manage Cyber Security, Operations, and HR trainings using Knowbe4.
• Phishing Campaigns: Create and run phishing campaigns using Knowbe4.
• Email Investigations: Investigate reported emails as phishing using the Knowbe4 Phishing Alert Button (PAB) and take appropriate action.
• Communications: Write and send monthly cybersecurity training and reminder emails.
• Policy Management: Write and update IT and Cyber Security policies.
• Surveys and Questionnaires: Fill out cyber and infrastructure surveys and questionnaires.
• Vendor Management: Serve as the main point of contact for ESentire (3rd party Cyber Security Vendor).
• System Monitoring: Monitor and manage ESentire systems (S1, Tenable, Sumo Logic).
• Tool Management: Monitor and manage the Upguard public-facing cybersecurity tool.
• Incident Response: Investigate and act on reported and discovered cyber issues.
• Proactive Security: Suggest and implement actions to tighten security and reduce the company's cyber footprint.
• User Permission Audits: Conduct user permission audits in O365 and Datacor systems.
• Patching and Updates: Monitor, manage, and report on system and software patches and updates. Collaborate with the IT team to address any non-compliant systems.
• Network Security: Monitor and manage firewalls and switches.
• Team Meetings: Conduct weekly Cyber Security catchup meetings with members of the IT team.
• Perform 3 rd risk audits.
  
  

Additional Responsibilities

• Ensure compliance with relevant regulatory requirements and industry standards.
• Maintain and update disaster recovery and business continuity plans.
• Collaborate with other departments to integrate security measures into all aspects of the business.
• Stay current with the latest cybersecurity trends, threats, and technology solutions.
• Assist in the development of incident response plans and participate in incident response activities as needed.
  
  

Job Qualifications

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• At least 3 years of experience in a cybersecurity role.
• Strong understanding of cyber threats, vulnerabilities, and risk management.
• Strong understanding of Microsoft O365 environments and tools.
• Proficiency with cybersecurity tools and technologies, including Knowbe4, ESentire systems, and Upguard.
• Experience with network security, including firewalls and switches.
• Excellent written and verbal communication skills.
• Strong analytical and problem-solving abilities.
• Relevant certifications are a plus.
  
  

Location

• Norwood NJ, On-Site
  
  

Work Environment

• Indoor/Standard Office Environment
  
  

Physical Demands

• Sitting and/or alternate sitting and standing at will.
• Keyboarding. Entering text or data into a computer using a traditional keyboard.
• Speaking. Expressing or exchanging ideas using the spoken word to impart oral information to clients or the public and to convey detailed spoken instructions to other workers accurately, loudly, or quickly.
• Hearing Requirements. The ability to hear, understand and distinguish speech and/or other sounds. (i.e., in-person speech, telephone, computer, etc.)
• Near Visual Acuity. Clarity of vision at approximately 20 inches or less (i.e., use of computers.)
• This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee. Duties, responsibilities, and activities may change, or new ones may be assigned at any time with or without notice.