We are seeking a skilled and experienced Cyber Security Analyst to join our team. The Cyber Security Analyst will be responsible for ensuring the confidentiality, integrity, and availability of our organization's information assets. The successful candidate will have a strong background in vulnerability management, vendor risk assessment, incident response, and analysis. This role requires a deep understanding of cybersecurity best practices, the ability to analyze and mitigate security risks, and the capability to respond effectively to security incidents.
- Perform vulnerability assessments to identify and prioritize security vulnerabilities in our systems and networks.
- Conduct vendor risk assessments to evaluate the security posture of third-party vendors and make recommendations for risk mitigation.
- Develop and implement incident response plans, including identification, containment, eradication, and recovery procedures.
- Monitor security logs and alerts, investigate potential security incidents, and provide timely incident response and analysis.
- Collaborate with cross-functional teams to ensure security requirements are incorporated into system designs and configurations.
- Maintain and enhance security policies, standards, and procedures to ensure compliance with regulatory requirements.
- Stay up-to-date with the latest cybersecurity threats, trends, and technologies, and make recommendations for continuous improvement.
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- Minimum of 3 years of experience in cyber security, with a focus on vulnerability management, vendor risk assessment, and incident response.
- Strong knowledge of cybersecurity frameworks, such as NIST, ISO 27001, or CIS Controls.
- Familiarity with security tools, including vulnerability scanners, SIEM, IDS/IPS, and endpoint protection solutions.
- Experience in analyzing security logs, alerts, and network traffic to identify and investigate security incidents.
- Excellent problem-solving and analytical skills, with the ability to think critically and respond quickly to security threats.
- Strong communication and interpersonal skills, with the ability to effectively communicate complex security issues to both technical and non-technical stakeholders.
- Professional certifications such as CISSP, CISM, or GIAC certifications are a plus.
The Buffalo Bills, LLC are proud to be an Equal Opportunity Employer and do not discriminate based upon race, color, religion, gender, national origin, sexual orientation, gender identity, gender expression, age, disability status, protected veteran status, or any other characteristic protected by law.