Cyber Security Analyst

Job Title: Cyber Security Analyst

Job Type: Direct Hire

Location: Houston, TX (Hybrid onsite)

Our client is a leading producer in the North American oil and gas industry. They understand the critical importance of cybersecurity in protecting their infrastructure, data, and operations. To bolster their cybersecurity efforts, they are seeking a skilled Cyber Security Analyst to join their team and help safeguard their critical assets.

As a Cyber Security Analyst, you will be an integral part of the cybersecurity team responsible for securing digital infrastructure, systems, and sensitive data. You will work in a dynamic and challenging environment where your expertise in cybersecurity will be instrumental in protecting our operations from cyber threats and ensuring the safety and reliability of our systems.

• Key Responsibilities:Continuously monitor network traffic, which includes Data Center, Campus, Remote Sites, Cloud Infrastructure, industrial control systems (ICS), and supervisory control and data acquisition (SCADA) systems for signs of suspicious activity and potential cyber threats.
• Participate in incident response activities, including investigating security incidents, analyzing root causes, and coordinating remediation efforts.
• Participate in the planning and design of enterprise security architecture
• Participates in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures).
• Participates in the planning and design of a risk management plan, enterprise business continuity plan and disaster recovery plan.
• Conduct regular vulnerability assessments and penetration tests on systems and networks, identify weaknesses, and recommend security improvements.
• Implement and manage security controls specifically tailored to protect critical infrastructure assets in the oil and gas sector.
• Ensure compliance with industry-specific cybersecurity regulations and standards, such as CIS Controls v8 and NIST SP 800-82, ISA/IEC 62443, and API RP 1164
• Perform risk assessments and develop risk mitigation strategies to protect against cyber threats that could impact the safety and reliability of daily operations.
• Promote a culture of cybersecurity awareness and best practices among employees and contractors working in the oil and gas sector.
• Maintain comprehensive documentation of security policies, procedures, and incident response plans.
• Design, Manage and Configure security tools and technologies relevant to the protection of critical infrastructure.
• Monitor and respond to “phishing” emails and “pharming” activity.
• Maintain and Information Security Risk Register and assist with internal and external audits relation to information security.
• Monitor/Maintain IAM for abuse of permissions by authorized system users.
• Prepare Reports on security incidents and responses.
• Keep up to date with latest security and technology developments.
• Perform Computer/Network Forensics to gather and preserve evidence from a computer/network device.
• Test and Evaluate Security Deployments and Products
• Qualifications:1-4 Years in Cyber Security, Network Administration or Systems Administration or equivalent combination of education/experience
• Knowledge of network systems administration and architecture
• Understanding of networking concepts (TCP/IP)
• Understanding of operation systems (Windows/Linux)
• Understanding of NGFW, Proxies, SIEM, EDR/XDR and IPS/IDS concepts
• Understanding of industrial control and SCADA systems
• Experience with Windows Server, File Services, and AD
• Knowledge of security frameworks and standards (NIST, CIS)
• Knowledge of Oil and Gas industry-specific technologies
• Strong analytical and problem-solving skills.
• Ability to handle high pressure situations in a productive and professional manner.
• Excellent communication and teamwork abilities
• Plus:CompTia Network
• CompTia Security
• CompTia CYSA
• CCNA

Hours: 8-5pm CST

Resource Level: 2

Role Type: Hybrid (Monday-Wednesday Office, Remote Thursday-Friday.