We work alongside the best and brightest to do incredibly cool things you wouldn't believe. At Roush, you're part of building the future. Are you someone that has a passion for providing innovated solutions to complex challenges? Do you want to work someplace where creativity and new ideas are encouraged? If so, then keep reading.
We fuse technology and engineering to provide product development solutions to customers in a diverse range of industries. Widely recognized for providing engineering, testing, prototype, and manufacturing services to the transportation industry, Roush also provides significant support to the aerospace, defense, and theme park industries. With over 2,400 employees in facilities throughout the United States, Europe, Asia, and South America, our unique combination of creativity and tenacity activates big ideas on a global stage. Roush is seeking a Cyber Security Analyst II to protect from cyber-attacks by monitoring the systems and remediate threats. The role will also support in the implementation and management of cyber security policies, data loss prevention, CASB, vulnerability assessments, incident management and implementing/managing security tools. This position is located in Livonia, MI. As a Cyber Security Analyst II, you will:Manage the SIEM solution and identify, triage, and remediate cyber security alertsLead MS-365 security & compliance implementation by ensuring security requirements are satisfied Define technical and business processes and policies related to data protection strategies as well as implementing DLP solution to provide, security, privacy, and integrity Perform vulnerability assessment and remediation, and interface with technical teams to advocate for appropriate remediation responseAudit endpoint & server patching processes to identify gaps and work with technical teams to resolve issuesMonitor the corporate network for security threats and breaches and remediate anomalies/breaches Conduct network monitoring and intrusion detection analysis using various tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), firewalls, SIEM, NAC, EDR, DLP, Cisco Umbrella and host-based security toolsConduct security incident investigations, act as a security matter expert during cyber incident response and collaborate with technical teams to assure incident resolution is resolvedResearch the latest cyber security trends and approaches for remediationLead cyber security education and simulated phishing testsMinimum qualifications to be considered:Bachelor's degree in Computer Science, Computer Engineering, or related experienceU.S. Citizen or U.S. Permanent Resident allowing for International Traffic in Arms Regulations (ITAR) complianceMinimum of 5 years of experience managing a security information and event management (SIEM) system or other cybersecurity-related monitoring solutions and driving remediation based on SIEM outputs5 years' experience with cloud-delivered commercial and government-based solutions such as Microsoft M365- E5/Azure, Amazon Web Services and Google Cloud Platform, and experience with IT backup and disaster recovery systemsWorking knowledge of NIST CSF, 800-171, CMMC, MS-365 Security & Compliance, DLP, SIEM, CrowdStrike, Cisco Umbrella, Incident management, TCP/IP (Transmission Control Protocol/Internet Protocol), DNS (Domain Name System), and DHCP (Dynamic Host Configuration Protocol)Knowledge of firewalls, switches, servers (Windows, LINUX) and databasesUnderstanding and proficiency with SAN (Storage Area Network) and NAS (Network Attached Storage), Local Area Network (LAN) and Wide Area Network (WAN) concepts and configurations such as routing, cabling, VPN (Virtual Private Network), and ISPs (Internet Service Providers) options and capabilities Ability to act effectively as a technical resource in annual disaster recovery testing initiatives. Excellent communication skills including ability to interact effectively with customers, vendors, and team members and strong leadership and organizational skills.A successful candidate may also have:Master's degree in business or information technology or related field.Minimum 5 years of professional experience supporting, securing, and maintaining networks, servers, and cloud environments.Certification(s) in information security such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), etc. Experience with system installation, configuration, and analysis and capacity planning and performance monitoring techniques and tools Working knowledge of network performance monitoring solutions such as SolarWinds or Nagios. Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA).Knowledge of a project management and diagramming and vector graphics applications such as Microsoft Project and Microsoft Visio, respectively.Our full-time benefits include: medical, dental, vision, life insurance, earned sick time, STD, LTD, 401K, tuition reimbursement, paid vacation, paid holidays, and more. If you share our passion for providing innovative solutions to complex challenges, we want you on our team. Please visit our careers page and apply by clicking on this link: https://jobs.roush.com/us/en/ Visit our website: www.roush.com Like us on Facebook: www.facebook.com/RoushCareers Roush is an EO employer – Veterans/Disabled and other protected categories If you need a reasonable accommodation for our employment application process due to disability, please contact Roush Talent Acquisition at ******** .