Location

Purpose

~ The purpose of the Analyst, Infosec Protection Center position is responsible for safeguarding information system assets by identifying and solving potential and actual security problems to ensure the confidentiality, integrity, and availability of IT resources and their associated data.

Major Responsibilities

~ Identify, document, and monitor tactics, techniques and procedures used by internal/external threat actors targeting sales office & plant.

~ Collaborate with affiliates (IT outsourcing) to architect and maintain systems supporting collection, processing and analysis of raw intelligence and data.

~ Support and coordinate the installation of security measures, software, hardware, and applications to protect infrastructure and programs.

~ Conduct deep-dive analysis on attacks and share actionable data affiliate to build and implement countermeasures to protect infrastructure and customers.

~ Understanding of system behavior and artifacts associated with data leakage activity and data breach on different operating systems.

Major Responsibilities (continued)

~ Perform security monitoring, security event triage, and incident response. Analyze alert patterns to provide recommendations for policy improvement.

~ Respond to daily security incidents following established incident response methodology.

~ Maintain Information Security Policies, processes, and other documents, or reports as needed.

~ Support audit initiatives by coordinating collecting evidence among affiliate organizations and internal teams. Track issue closure.

~ Manage security awareness training/testing modules and related messaging.

Authority

N/A

Education

Related Experience

~ Two to four years of experience of which over 3 years of cyber security / IT security experience in medium to large enterprise preferred.

~ Experience with cybersecurity tools, processes and methodologies and framework including regulatory requirements.

~ Experience with security protectionary measures to meet privacy compliance and data governance.

~ Working knowledge of ISO27001 or ISO 27701 or NIST Cybersecurity Framework or CIS 18 controls.

Skills/Knowledge

~ Extensive knowledge in two or more of the following Security tools:

~ Security Information and Event Management (SIEM), Cloud Access Security Broker (CASB), Data Loss Prevention (DLP), Endpoint Protection Platform (EPP), Endpoint Detection and Response (EDR), and Web filter.

~ Working understanding of information security technical terms and ability to explain them to non-technical people.

~ Familiarity with different enterprise-grade information security technologies.

~ Excellent verbal and written communication skills to allow effective interaction with all levels of the organization.

~ Ability to work independently, work under pressure of deadlines, handle multiple priorities and pay close attention to detail.

~ Customer focused yet able to balance risk while maintaining business operations.

Certification Required

~ CISA, CISSP or similar security certifications preferred but not required.

Physical Requirements

Work Model

Affiliate

Compensation

Benefits

Actual pay will be based on skills, experience and education. Our total rewards package includes base salary, bonus and benefits. Benefits include healthcare insurance (medical/prescription, dental, vision), 401(k) company match, a quarterly employer enhanced contribution, basic life insurance, short- and long-term disability, employee assistance program (work/life balance programs and confidential counseling), expert medical services (provider referrals, second opinion), business travel accident insurance, health advocacy (coordinate care and services, assistance with claim and billing issues, understanding Hyundai benefits), annual discretionary bonus, accrued vacation pay, company provided sick pay, vehicle lease program (monthly fee includes insurance and maintenance).