Cyber Security Analyst

About Us:

Founded in 1966, Niterra North America, Inc. (formerly NGK Spark Plugs) is the world leader in technology, innovation, and world-class quality in the design of spark plugs and oxygen sensors. Today, that tradition continues as we transform our organization's portfolio, expand our core ceramic technologies, explore capabilities beyond traditional areas, and challenge ourselves to develop solutions and services that leverage technology to address social issues while contributing to a sustainable society.

Summary:

The Cyber Security Analyst will support the SecOps team by ensuring compliance with security standards, conducting risk assessments, managing third-party risk, and deploying security tools to safeguard company assets. This role involves collaborating with internal and external auditors, reviewing and documenting standard operating procedures, managing privileged access, and leveraging automation to optimize security operations. The ideal candidate brings strong hands-on experience in security operations and the ability to work effectively under pressure during critical situations.

Responsibilities:

• Collaborate with internal auditors to address and remediate audit findings, ensuring compliance and risk mitigation.
• Work closely with external auditors to implement necessary security controls based on audit recommendations and findings.
• Apply expertise in TISAX Audit requirements to ensure compliance and security standards are met.
• Review, create, and document standard operating procedures for security processes and practices.
• Conduct regular user access reviews and governance assessments to ensure proper compliance with security policies.
• Manage the TPRM (Third Party Risk Management) tool to assess and mitigate risks.
• Serve as a subject matter expert on Privileged Access Management (PAM) technology and solutions, providing guidance on best practices and implementation.
• Perform risk assessments and gap analyses to identify vulnerabilities and recommend appropriate corrective actions.
• Act as a point of contact for assigned security vendors providing managed services, ensuring effective communication and timely resolution of escalated issues.
• Deploy and implement security tools to safeguard company assets and enhance security posture.
• Regularly review logs to detect anomalies or potential security threats that could lead to security breaches.
• Leverage automation tools and technologies to optimize workflows, improve operational efficiency, and enhance productivity in security operations.
• Coordinate special projects as assigned by management.
• Follow incident response procedures.
• Maintain flexibility in schedule to provide backup coverage.
• Cross-train with and provide support for other IT associates.
• Perform general housekeeping duties.
• Adhere to all company policies and procedures, which include IATF, ISO, ISMS, TISAX, QMS, and Safety related policies.

Qualifications:

• Associate degree in Computer Science, Information Security, or a related field; or an equivalent combination of relevant education and professional experience.
• Minimum of 3 years of hands-on experience in Security Operations (SecOps) including but not limited to incident response, Endpoint Detection and Response (EDR), endpoint security, compliance, risk management, and related functions.
• Strong understanding of network concepts, including TCP/IP, routing, etc.
• Extensive experience with security functions including firewalls, Intrusion Detection/Prevention Systems (IDS/IPS), email security, endpoint security, Security Information and Event Management (SIEM), EDR, vulnerability scanning, etc.
• Familiarity with NIST Cybersecurity Framework (CSF) and other industry-standard security controls and guidelines for incident response.
• Proven ability to collaborate effectively with business stakeholders, build trust, and maintain productive relationships with third-party vendors and partners.
• Strong problem-solving skills and the ability to work effectively under pressure during critical and time-sensitive situations.
• Industry standard information security certifications such as CompTIA Security+, Network+, or similar credentials highly preferred.

Physical Requirements:

• Able to see and hear (correctable).
• Able to communicate effectively.
• Able to use a computer keyboard.
• Able to sit for extended periods of time.

Potential Hazards:

• Normal office hazards.

What We Offer:

- Comprehensive Health Benefits:
Medical, dental, vision, and life insurance.
- Financial Security:
Short-term and long-term disability coverage.
- Retirement Savings:
401(k) plan with a generous company match of up to 6%.
- Time Off:
Generous paid time off, including vacation, sick leave, and holidays.
- Work-Life Balance:
Paid maternity and paternity leave.
- And much more!

Equal Employment Opportunity Statement:

Niterra is an equal opportunity employer committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.

Notice to Staffing Firms:

Niterra does not seek or accept unsolicited resumes or CVs from recruitment agencies. We are not responsible for, and will not pay, any fees, commissions, or other payments related to unsolicited resumes or CVs, except as required by a written contract between Niterra and the recruitment agency or party requesting payment of a fee.