Cyber Security Analyst

JOB DESCRIPTION

Summary

Adient's Global Information Security team is growing and so is our mission. As we expand our cybersecurity resources to stay ahead of an evolving threat landscape, we're building stronger prevention, detection, and response capabilities across the enterprise. Based in Plymouth, Michigan, the Cyber Security Analyst reports to the Global Cyber Security Operations Manager and helps design and implement the standard operating procedures that power day-to-day cyber defense. You'll be part of our global incident management program, which protects the business by ensuring incidents are rapidly identified, analyzed, communicated, contained, investigated, and reported. The team delivers security monitoring and 24x7 global incident response-and during critical events, we marshal the right information and expertise to uncover attacks, assess business impact, and drive decisive action.

Primary Responsibilities

• Perform all security procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
• Perform ticket administration to monitor and analyze the priority and status of Information Security tickets to ensure accuracy and timely resolution.
• Assist with Computer Security Incident Response activities for a large organization and coordinate with other IT teams and business units to record, report, and resolve incidents.
• Perform follow-up to assist with Intrusion Detection Systems (IDS) monitoring and analysis to identify security issues for remediation.
• Support efforts to recognize intrusion attempts and perform thorough reviews and analyses of relevant event details and summary information.
• Communicate alerts to cross-functional teams regarding intrusions and compromises to the network infrastructure, applications, and operating systems.
• Assist with the implementation of counter-measures or mitigating controls.
• Prepare incident reports of analysis methodology and results.
• Maintain current knowledge of relevant technology as assigned.
• Participate in special projects as required.

Qualifications

The successful candidate will communicate effectively with business and IT stakeholders, execute the security incident response and information inventory management strategy defined by leadership, and demonstrate strong judgment, maturity, and a proactive approach to driving change. The Cyber Security Analyst will also analyze log data, including conducting forensic examinations of system and resource access.

• Minimum bachelor's degree in Cyber Security, Computer Science, or relevant work experience
• 3-5 years of information security-related experience
• Solid understanding of basic computer science principles
• Strong knowledge of adversary motivations in cybersecurity
• Proficient in security operations concepts and practices
• Excellent communication skills for technical and non-technical audiences
• Ability to establish and maintain business relationships
• High level of discretion and personal integrity
• Experience with open-source and commercial security management tools
• Knowledge and experience in strategic information security planning
• Advanced skills in event analysis, incident investigation, and log analysis
• Deep understanding of networking, threat landscape, and digital forensics
• Proficiency in generating and modifying Indicators of Compromise (IOC)
• Advanced knowledge of penetration techniques and DDoS mitigation
• Moderate understanding of IDS/IPS systems, Windows, Unix/Linux, and firewalls
• Scripting experience and moderate knowledge of forensic techniques
• Proficiency in protocol analysis and understanding of regulatory compliance requirements
• Understanding of the National Institute of Standards and Technology (NIST) Cybersecurity Framework

Desired Certifications (but not required):

• Offensive Security Certified Professional (OSCP)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GIAC)
• GIAC Certified Forensic Examiner (GCFE)
• GIAC Certified Forensic Analyst (GCFA)
• GIAC Certified GIAC Reverse Engineering Malware (GREM)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• Certified Ethical Hacker (CEH)
• Cisco Certified Network Professional Security (CCNP Security)
• Cisco Certified Network Professional (CCNP)
• Forensics Examiner Certification (EnCE, FTK)
• Server Platform Certifications (Microsoft, Linux)

PRIMARY LOCATION

Central Tech Unit Plymouth MI