Cybersecurity Analyst

The Gogo Cybersecurity Analyst plays a pivotal role in safeguarding enterprise systems by leveraging expertise in architecture, application security, database management, system design, and operational protocols. This position ensures that the highest security standards are implemented across the organization. 

The Cybersecurity Analyst proactively strengthens defenses by strategizing, designing, and deploying security best practices. Additionally, this role includes the installation, monitoring, maintenance, support, and enhancement of security infrastructure, encompassing both hardware and software solutions. Responsibilities also include providing Tier 1 and 2 security assistance, efficiently diagnosing and resolving security concerns, and delivering end-user training as necessary. 

Are you proficient in security technologies, industry standards, and best practices? If so, please read on! 

How Will You Make a Difference? 

• Develop and enforce robust physical and logical security controls to protect enterprise assets 

• Continuously monitor networks and systems for security breaches using cutting-edge security tools 

• Evaluate internal operational architecture, technologies, and methodologies to identify optimization opportunities 

• Architect and maintain enterprise Identity and Access Management (IAM) solutions 

• Assist with vulnerability management initiatives and remediation efforts to mitigate risks 

• Drive company-wide awareness by implementing comprehensive security training programs 

• Conduct penetration testing, web and mobile application security assessments, source code evaluations, threat modeling, wireless security assessments, and social engineering tests 

• Collaborate with third-party security vendors to oversee outsourced security services. 

• Coordinate security projects with internal teams and key stakeholders 

• Contribute to the security governance framework by defining policies, standards, and best practices 

• Engage in the incident response lifecycle, including escalation, communication, troubleshooting, resolution, and post-mortem analysis 

• Participate in an on-call rotation to provide after-hours security support 

• Develop and maintain security documentation, policies, and business-critical reports 

• Identify and report security risks and incidents to the Chief Information Security Officer (CISO) 

• Design automation scripts and tools to streamline security processes, audits, and testing. 

• Maintain expertise in security frameworks such as NIST 800-53, 800-171, and ISO 27000. 

• Serve as a security Subject Matter Expert (SME) for enterprise-wide business and IT initiatives 

• Conduct security risk assessments for third-party vendors and partners 

• Perform security and risk assessments of third parties 

Qualifications 

• Bachelor’s Degree in Cyber, Information Systems, Computer Science, or equivalent work experience 

• 2-4 years of experience in Information Technology, with a strong focus on cybersecurity 

• Relevant industry certifications such as Security+, SSCP, CEH, OSCP, or equivalent. CISSP certification is required upon eligibility 

Required Skills, Experience, and Talents 

• Comprehensive knowledge of security frameworks (e.g., NIST 800-53, 800-171, ISO 27000) 

• Hands-on experience with security tools, including Vulnerability Scanners, SIEM, Access Control Systems, CCTV, Email Security Gateways, Multi-Factor Authentication (MFA), Antivirus/Antimalware, Intrusion Prevention/Detection Systems (IPS/IDS), and Network Access Control (NAC) solutions 

• Proficiency with security software and platforms such as Qualys, LogRhythm, C-Cure, ExacqVision, Proofpoint, Jira, Confluence, Palo Alto Networks, DualShield, and Kali Linux 

• Familiarity with programming languages including PowerShell, Python, C#, and JavaScript 

• Strong organizational, analytical, and problem-solving capabilities 

• Demonstrated ability to manage projects efficiently