The selected candidate for the Cybersecurity Analyst II position evaluates and responds to alerts from a variety of cyber security monitoring and response tools. The worker provides support to the business community and ensures they have protection from malicious software and other cyber threats.  The worker evaluates and recommends security controls to remediate and mitigate risk.  The worker provides reports and other information related to cybersecurity issues as requested by management and other groups.  The worker performs evaluation and analysis of security applications and systems and makes recommendations to management.  This position utilizes knowledge and experience in own discipline but is still building higher-level knowledge and skills.  This position receives a moderate level of guidance and direction from supervisor, manager and/or more experienced colleagues.

Duties for this position include:

•    Monitors and coordinates findings with appropriate SMEs for database monitoring alerts.
•    Participates in risk assessments and recommends security measures.
•    Monitors cybersecurity systems for possible intrusion.
•    Interacts with end users concerning malware, spam, vulnerabilities and any other cybersecurity issues.
•    Reviews and creates audit reports on user and system activities.
•    Reviews system generated logs for anomalies and takes appropriate actions.
•    Actively probes the network for new threats and risks.
•    Documents, deploys, reviews and maintains cybersecurity policies, standards, guidelines and procedures.
•    Monitors security alerts on internet and other intelligence feeds and determines whether reported threats could impact client technology or operational systems.
•    Implements and administers technical security systems including SIEM, VAT, network IDS, antivirus, web and email filters, and firewalls.
•    Performs cybersecurity incident response activities.
•    Documents and maintains objective evidence to demonstrate NERC CIP regulatory compliance.
•    Performs work by traveling independently or with a small team to various locations (substations, power plants, water systems, etc.) as scheduled.

The worker should have experience in threat identification, detection, and security event analysis.    

II.    WORKER SKILLS AND QUALIFICATIONS

    Minimum Requirements:
    Years        Skills/Experience
    5    Cybersecurity event triage and analysis 
    5    Threat detection
    5    Experience working in a security operations role responsible for analyzing security events to determine if a cybersecurity incident may have occurred.
    5    Skill in analyzing significant volumes of detailed information and understanding the security implications
    5    Experience administering and responding to database monitoring tools and alerts
                             
               Preferences:
    Years        Skills/Experience
            CISSP, GIAC, or similar certification
    intermediate        Knowledge of anti-virus and anti-spam technologies
    intermediate        Knowledge of technology hardware and software platforms and systems
    intermediate        Skill in analytical and technical documentation
    intermediate        Skill in verbal and written communication
    intermediate        Skill in articulating complex, technical information to both technical and non-technical audiences
    intermediate    Skill in understanding complex systems across diverse technical platforms
    intermediate    Skill level in anti-virus, anti-spam, secure content, network security and web filtering software
    intermediate    Ability to balance and manage competing high priority work demands
    intermediate    Ability to work in a team environment
    intermediate    Ability to conduct sensitive security investigations and maintain confidentiality
    intermediate    Skill in database security monitoring and response process

III.    TERM OF SERVICE
Services are expected to start as soon as possible to be completed January 2020.  The duration is expected to be roughly 12 months, 2080 hours.  This service may be amended, renewed and/or extended.

EEO Employer

Apex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at 844-463-6178