Roush

Title Cyber Security Analyst II Location Livonia, MI Category Corporate Hiring Type Full Time

We work alongside the best and brightest to do incredibly cool things you wouldn't believe. At Roush, you're part of building the future. Are you someone that has a passion for providing innovated solutions to complex challenges? Do you want to work someplace where creativity and new ideas are encouraged? If so, then keep reading.

We fuse technology and engineering to provide product development solutions to customers in a diverse range of industries. Widely recognized for providing engineering, testing, prototype, and manufacturing services to the transportation industry, Roush also provides significant support to the aerospace, defense, and theme park industries. With over 2,400 employees in facilities throughout the United States, Europe, Asia, and South America, our unique combination of creativity and tenacity activates big ideas on a global stage.

Roush is seeking a Cyber Security Analyst II to protect from cyber-attacks by monitoring the systems and remediate threats. The role will also support in the implementation and management of cyber security policies, data loss prevention, CASB, vulnerability assessments, incident management and implementing/managing security tools. This position is located in Livonia, MI.

As a Cyber Security Analyst II, you will:Manage the SIEM solution and identify, triage, and remediate cyber security alertsLead MS-365 security & compliance implementation by ensuring security requirements are satisfied Define technical and business processes and policies related to data protection strategies as well as implementing DLP solution to provide, security, privacy, and integrity Perform vulnerability assessment and remediation, and interface with technical teams to advocate for appropriate remediation responseAudit endpoint & server patching processes to identify gaps and work with technical teams to resolve issuesMonitor the corporate network for security threats and breaches and remediate anomalies/breaches Conduct network monitoring and intrusion detection analysis using various tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, SIEM, NAC, EDR, DLP, Cisco Umbrella and host-based security toolsConduct security incident investigations, act as a security matter expert during cyber incident response and collaborate with technical teams to assure incident resolution is resolvedResearch the latest cyber security trends and approaches for remediationLead cyber security education and simulated phishing testsMinimum qualifications to be considered:Bachelor's degree in Computer Science, Computer Engineering, or related experienceU.S. Citizen or U.S. Permanent Resident allowing for International Traffic in Arms Regulations (ITAR) complianceMinimum of 5 years of experience managing a security information and event management (SIEM) system or other cybersecurity-related monitoring solutions and driving remediation based on SIEM outputs5 years' experience with cloud-delivered commercial and government-based solutions such as Microsoft M365- E5/Azure, Amazon Web Services and Google Cloud Platform, and experience with IT backup and disaster recovery systemsWorking knowledge of NIST CSF, 800-171, CMMC, MS-365 Security & Compliance, DLP, SIEM, CrowdStrike, Cisco Umbrella, Incident management, TCP/IP (Transmission Control Protocol/Internet Protocol), DNS (Domain Name System), and DHCP (Dynamic Host Configuration Protocol)Knowledge of firewalls, switches, servers (Windows, LINUX) and databasesUnderstanding and proficiency with SAN (Storage Area Network) and NAS (Network Attached Storage), Local Area Network (LAN) and Wide Area Network (WAN) concepts and configurations such as routing, cabling, VPN (Virtual Private Network), and ISPs (Internet Service Providers) options and capabilities Ability to act effectively as a technical resou