Be an early applicantLess than 25 applicants

Company

Longroad Energy · 5 hours ago

Information Security Analyst

Hampden County, MA

Full-time

Remote

Mid, Senior Level

5+ years exp

Maximize your interview chances

EnergyEnergy Management

No H1B

Insider Connection @Longroad Energy

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Maintain optimal configuration for endpoint log collection into SIEM

Partner with the IT infrastructure team to map and align change control process with known threats and active vulnerabilities

Actively maintain SIEM alert queries based upon latest threat trends

Maintain and update system baselines

Ensure newly onboarded infrastructure is tested, monitored, and maintained for vulnerabilities, logging, and system hardening based upon existing baselines

Manage and maintain enterprise asset visibility and risk mitigation platform

Monitor vendor CVE’s on a regular basis and coordinate patch or configuration mitigation responses with the appropriate parties

Perform cyber security training for all employees and contractors

Assist in maintaining NERC CIP program

Respond to cybersecurity incidents for ICS/OT/IT environments and provide recommendations to affected entities to prevent the reoccurrence of these incidents within a variety of critical infrastructure

Apply specific functional knowledge to resolve cybersecurity incidents and perform proactive threat hunts

Be involved with highly technical operations and forensic analysis and continuously advising key decision makers

Follow procedures to respond to and escalate incidents

Provide expertise to define procedures for response to cyber security incidents in the industrial control system environment

Apply traditional incident response and threat hunting tradecraft to industrial control system/critical infrastructure environments-with a deep understanding of the nuance and constraints of industrial environments

Maintain accurate records of incident response activities and findings

Prepare and deliver incident reports to management and stakeholders

Keep current with latest security trends and news to continually improve hunt and incident response operations

Have a strong customer-service orientation with excellent written and oral communication skills

The ability to self-teach and self-test new tools and methodologies, and to problem-solve independently

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Information SecurityCybersecurity Incident ResponseThreat HuntingDigital ForensicsCISSPGICSPSIEM ToolsPythonBashPowerShellJavaScriptIndustrial Control SystemsModBusENIP/CIPBACnetDNP3Incident Reporting

Required

Bachelor’s degree in Computer Science, MIS, or related field

5+ years of experience in a similar role

CISSP and/or GICSP

2 years of Threat Hunting or Digital Forensics experience directly supporting Critical Infrastructure

Scripting in Python, Bash, PowerShell, and/or JavaScript

Experience using a SIEM tool for pattern identification, anomaly detection, and trend analysis

Experience analyzing a variety of industrial control systems network protocols, including but not limited to: ModBus, ENIP/CIP, BACnet, DNP3, etc.

Experience with the common open source and commercial tools used in security event analysis, incident response, computer forensics, malware analysis, or other areas of security operations

Experience with collection and detection tools, including OSS/COTS host-based and network-based tools