Cybersecurity Analyst

Title: Cybersecurity AnalystLocation: City Hall, Suffolk VA 23434

Job Summary

Immediate need for a Cybersecurity Analyst who can implement security measures for information systems, regulate access to computer data files and prevent unauthorized modification, destruction, or disclosure of information. The Cybersecurity Analyst is responsible for evaluating, administering, and auditing security measures to restrict unauthorized access or use of data systems and databases. Coordinates any security investigations and executes preventive measures.

Essential Job Functions • Monitor the City’s networks for security breaches and investigate when one occurs. • Use and maintain software, such as Firewalls, data encryption programs, Email filters, Anti-Virus, and Intrusion Detection Systems, to protect sensitive information. • Check for vulnerabilities in computer and network systems. • Research the latest information technology (IT) security trends. • Prepare reports that document general metrics, attempted attacks, and security breaches. • Implement security standards and best practices for the organization. • Recommend security enhancements to management or senior IT staff. • Assist and train end-users when implementing new security products and procedures. • Works with Information Technology staff and other departments to implement solutions related to the security within the City. • Performs other related duties as required.

Required Qualifications

>Bachelor's degree in Information Technology, Information Systems with an emphasis on Cyber security or directly related field of study,

>3 years of experience in Information security and/or Cybersecurity;

>Industry-related certifications, e.g., CompTIA Security+, CompTIA Cybersecurity Analyst+ (CySA+, (ISC)2 Certified Information Systems Security Professional (CISSP), ISACA Certified Information Security Manager (CISM), CompTIA CASP+, EC-Council Certified Ethical Hacker (CEH), and/or Global Information Assurance Certification (GIAC) Security Leadership(GSLC) are preferred.

Must have experience with: • Microsoft 365 E5 Security Features (Defender, Purview, Intune, Compliance - must have experience with at least 2 of these) • Microsoft Sentinel SIEM (including KQL MANDATORY) • Palo Alto firewalls • Tenable vulnerability management tools

Regarding the required technologies, here are the priorities: • Most critical: • Microsoft 365 security stack (Defender, Purview, Compliance, Intune) • Microsoft Sentinel SIEM (including hands-on KQL experience)

Important, but not required at the same depth: • Tenable vulnerability management tools • Palo Alto firewallsCandidates do not need all four

Microsoft 365 tools, but they must have strong hands-on experience with at least two, and familiarity with the others is strongly preferred. However, Sentinel and KQL experience are non-negotiable for this role.

Knowledge, Skills & Abilities • Requires complex technical expertise related to information security and ability to make recommend solid recommendations for improvements to hardware/software maintenance solutions. • Advanced knowledge of hardware/maintenance solutions related to the position. • Knowledge and skills to utilize appropriate software to perform intrusion checks on physical and virtual servers.

Equal Opportunity Employment Statement Incept Data Solutions, Inc. is an Equal Opportunity Employer and is committed to providing equal employment opportunities to all employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other status protected by applicable law. Employment decisions are based on qualifications, merit, and business needs.

Drug-Free Workplace Statement Incept Data Solutions, Inc. maintains a drug-free workplace in accordance with applicable federal, state, and local regulations. The unlawful manufacture, distribution, dispensation, possession, or use of controlled substances in the workplace is strictly prohibited. Compliance with this policy is a condition of employment and assignment to client engagements.

Pay: $30.00 - $40.00 per hour

Application Question(s): • Must be US Citizen OR Green card holder. • How many years of Microsoft Purview experience do you have? • How many years of Microsoft Compliance experience do you have? • How many years of experience creating and managing Microsoft Sentinel playbooks do you have?

Education: • Bachelor's (Required)

Experience: • Microsoft Sentinel SIEM: 3 years (Required) • Microsoft Defender: 3 years (Required) • KQL query: 2 years (Required) • Microsoft Intune: 2 years (Required)

Work Location: In person