Senior Cybersecurity Analyst

Join to apply for the Senior Cybersecurity Analyst role at CENIC

3 days ago Be among the first 25 applicants

Join to apply for the Senior Cybersecurity Analyst role at CENIC

This range is provided by CENIC. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.

$115,500.00/yr - $144,300.00/yr

About CENIC

Join the team that connects California to the world — advancing education and research statewide by providing a world-class computing network essential for innovation, collaboration, and economic growth. Our organization operates the California Research and Education Network (CalREN), a high-capacity computer network with more than 8,000 miles of optical fiber. The network serves over 20 million users across California, including the vast majority of K-20 students together with educators, researchers, and individuals at other vital public-serving institutions.

Position Summary

Reporting to the Manager, Information Security Office, the Senior Cybersecurity Analyst actively works as a cybersecurity resource on multiple complex projects to initiate and drive security activities to ensure CENIC networks, systems, and data are protected and available to support the organization's mission to serve the California educational community. Working as part of the core security team, the analyst will collaborate with members of the CENIC Security Advisory Committee, peer staff throughout the organization, and external solution partners to establish and enhance security tools, resources, and processes. This includes data protection, incident response, vulnerability management, email gateway security, identity and access management security architecture, network security monitoring, malware defense, and security awareness training. This position also functions as a point of cybersecurity expertise to internal staff and may serve as an official representative of CENIC in technical forums, panel discussions, and conference presentations.

SUPERVISORY RESPONSIBILITIES: None

LOCATION: Hybrid

Essential Functions

• Work under limited supervision with members of the Information Security Office (ISO) and extended CENIC teams on security solutions and implementations
• Serve as a core member of the CENIC Information Security Office (ISO), performing varying security duties including threat awareness, proactive network traffic analysis, incident response, forensic analysis, and resolution of security incidents.
• Collaborate with the CENIC Security Advisory Committee, CENIC segment leaders, and other security experts around the state to develop plans, if appropriate, for a Security Operations Center.
• Integrate knowledge of n etwork protocols, services, threats, vulnerabilities, mitigation strategies, hardware capabilities, and other information to build a security environment that reduces and mitigates risk while allowing CENIC’s open science mission to succeed.
• Evaluate a wide range of data, including Zeek (Bro) logs, email security logs, netflow data, centralized syslog, authentication logs, and others, to detect security incidents. Take timely action as appropriate: block problem traffic, send alerts, and/or investigate when suspicious activity is detected.
• Maintain ISO documentation and perform updates as needed
• Work with internal and external stakeholders to lead and complete new ISO projects and initiatives
• Responsible for identifying and integrating available threat intelligence feeds with CENIC network security monitoring and SIEM services
• Responsible for working with ISO staff and peer teams to design and implement secure email gateway services.
• Responsible for working with ISO staff and peer teams to design and implement secure identity and access management services.
• Responsible for performing threat hunting of anomalous activity
• Responsible for monitoring and responding to security alerts
• Responsible for maintaining the vulnerability management asset inventory to ensure accurate reporting
• Responsible for creating the weekly public vulnerability scan report
• Responsible for creating the monthly enterprise vulnerability risk status report
• Responsible for identifying and attending approved online training on a periodic basis
• Lead incident response efforts with internal and external security personnel and system administrators.
• Respond appropriately to internal and/or external complaints and notifications (e.g., scanning, hacking, spamming, etc.).
• Promote a strong security culture throughout CENIC’s internal network, consulting with CENIC management and staff.
• Ability to be ‘on call’ outside of regular business hours on a regular and recurring basis
  
  

Key Success Factors

• Ability to prioritize and complete tasks assigned in a timely manner
• Strong interpersonal skills and the ability to work well in a team-oriented environment
• Working knowledge of IP-based networking
• Working knowledge of scripting using regular expressions, data, and text manipulation tools such as awk and sed.
• Background in basic statistics and analytics, and experience with modern analytic and visualization packages
• Adept at understanding technical information and learning new concepts
• Self-motivated with demonstrated ability to work highly independently, requiring little direct supervision.
• Keen attention to detail, avoiding shortcuts that may adversely impact the quality of work
• Strong analytical and problem-solving skills
• Ability to consider, understand, and prioritize security (and privacy, where applicable) principles, practices, and procedures in all aspects of your role with CENIC.
• Experience streamlining operational capabilities through standardization and automation.
• Able to work on multiple tasks and respond to rapidly changing priorities.
• Ability to serve as a consultant on long-range vision for security design for CENIC security services.
• Able to identify and implement security enhancements that will maximize the security profile of CENIC while being sensitive to its mission.
• Ability to formulate, organize, and present ideas in an effective manner. Develop proposals and articulate cost/benefit trade-offs to various audiences.
• Ability to work collaboratively in a team environment and the ability to lead teams to reach consensus.
• Knowledge of public-key and private-key encryption techniques, including DES, RSA, and PGP/GPG.
• Strong understanding of complex TCP/IP networks.
• Knowledge of Layer 2, Wireless, Switching, and Routing Protocols
• Familiarity with securing virtualized environments.
• Familiarity and experience working on research and education networks.
• Familiarity with Research and Education networking communities in the US or abroad.
  
  

Required Education And/Or Experience

• BA/BS in computer science or related field, or equivalent experience.
• Certifications and/or equivalent training in a technical security specialty (e.g., GIAC, CISSP)
• A minimum of 7 years of experience in information security, cybersecurity, or network security engineering design, deployment, and implementation of security solutions. This includes continuous monitoring and making improvements to those solutions, working with the information security and security operations teams.
• Experience implementing industry security standards, such as ISO 27001, NIST SP800-53, NIST Cybersecurity Framework, or the Center for Internet Security (CIS) Critical Security Controls
• Minimum of 4 years of experience running and supporting security information and event management (SIEM) services.
• Minimum of 4 years of experience running and supporting vulnerability management services.
  
  

Preferred Education And/Or Experience

• Bachelor's degree in cybersecurity, information assurance, or related field.
• Experience configuring and supporting security orchestration and automated response (SOAR) services.
• Experience programming in C, C++, Python, Ruby, or other popular languages.
• 4 years of experience maintaining and administering production Unix/Linux operating systems, including RedHat/CentOS and FreeBSD variants.
  
  

Work Environment

This position operates in a professional office environment with standard office equipment, including computers, telephones, photocopiers, and filing cabinets.

Work Hours

The Information Security Office (ISO) operates weekdays between 8 AM and 5 PM PST but is available 24 hours a day, 7 days a week, 365 days a year for incident response needs. An employee’s work shift is based on CENIC’s business needs.

WHY WORK AT CENIC?

• Company Culture: Small teams and a collaborative environment provide the opportunity to make a large impact in a small organization.
• Community Engagement: We work with research and education institutions in the largest state economy in the United States. The work you do has meaning.
• Health Benefits : We have generous medical, dental, vision, and life insurance benefits.
• Paid Time Off: We offer liberal vacation, holiday, and sick leave.
• Investment in Your Future: CENIC contributes to your 403(b) even if you don't. We also offer matching contributions on top of that.
  
  

Work Authorization

Documented Proof of identity and legal eligibility to work in the United States.

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this Time.

• Seniority level
  Mid-Senior level

• Employment type
  Part-time

• Job function
  Information Technology
• Industries
  Software Development

Referrals increase your chances of interviewing at CENIC by 2x

Irvine, CA $82,800.00-$124,200.00 1 day ago

Hawthorne, CA $130,000.00-$170,000.00 1 week ago

Rosemead, CA $140,400.00-$210,500.00 1 month ago

Orange County, CA $175,000.00-$195,000.00 1 week ago

Rosemead, CA $157,800.00-$236,700.00 1 month ago

Los Angeles, CA $110,000.00-$150,000.00 2 weeks ago

Los Angeles, CA $118,560.00-$171,253.33 1 month ago

Rosemead, CA $140,400.00-$210,500.00 1 month ago

Newport Beach, CA $170,000.00-$190,000.00 5 days ago

Rosemead, CA $178,300.00-$267,400.00 1 month ago

Irvine, CA $92,400.00-$115,000.00 1 month ago

Irvine, CA $103,800.00-$190,300.00 6 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.