The Adient Global Information Security (GIS) team is transforming and expanding as Adient increases its cybersecurity resources and capabilities to address the increasing cybersecurity threat landscape. Hosted in Detroit, Michigan (though a remote role), the Cyber Security Analyst is a position reporting to the Global Cyber Security Operations Manager, with responsibilities including assisting in the development and implementation of standard operating procedures which support prevention, detection, and response of cyber security risks and threats. The Global incident management program provides the company with the ability to protect, detect, and respond to Cyber Security incidents impacting the enterprise by ensuring they are correctly identified, analyzed, communicated, actioned/defended, investigated, and reported. The program is responsible for security monitoring and global 24x7 incident response activities. The global security incident management program will also manage information resources during incident response activities to identify possible cyber-attacks or intrusion events and determine how they impact business.
Primary Responsibilities
- Perform all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
- Perform ticket administration to monitor and analyze the priority and status of Information Security tickets to ensure accuracy and timely resolution.
- Assist with Computer Security Incident Response activities for a large organization and coordinate with other IT teams and business units to record, report, and resolve incidents.
- Perform follow-up to assist with Intrusion Detection Systems (IDS) monitoring and analysis to identify security issues for remediation.
- Support efforts to recognize intrusion attempts and perform thorough reviews and analyses of relevant event details and summary information.
- Communicate alerts to cross-functional teams regarding intrusions and compromises to the network infrastructure, applications, and operating systems.
- Assist with the implementation of counter-measures or mitigating controls.
- Prepare incident reports of analysis methodology and results.
- Maintain current knowledge of relevant technology as assigned.
- Participate in special projects as required.
- Carry out all activities per GIS policies and SOC procedures.
Qualifications
The successful candidate will effectively communicate with different business and IT leaders; execute the security incident response and Information inventory management strategy defined by leaders; demonstrate drive, intelligence, maturity, and energy; and be a proven change leader. The Cyber Security Analyst will also perform analyses of log files, including forensic examination of system resource access.
- Minimum bachelor's degree in Cyber Security, Computer Science, or relevant work experience
- 3-5 years of information security-related experience
- Solid understanding of basic computer science principles
- Strong knowledge of adversary motivations in cybersecurity
- Proficient in security operations concepts and practices
- Excellent communication skills for technical and non-technical audiences
- Ability to establish and maintain business relationships
- High level of discretion and personal integrity
- Experience with open-source and commercial security management tools
- Knowledge and experience in strategic information security planning
- Advanced skills in event analysis, incident investigation, and log analysis
- Deep understanding of networking, threat landscape, and digital forensics
- Proficiency in generating and modifying Indicators of Compromise (IOC)
- Advanced knowledge of penetration techniques and DDoS mitigation
- Moderate understanding of IDS/IPS systems, Windows, Unix/Linux, and firewalls
- Scripting experience and moderate knowledge of forensic techniques
- Proficiency in protocol analysis and understanding of regulatory compliance requirements
- Moderate understanding of the National Institute of Standards and Technology (NIST) Cybersecurity Framework
- Experience in mentoring and training junior analysts
Desired Certifications (but not required):
- Offensive Security Certified Professional (OSCP)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GIAC)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Certified GIAC Reverse Engineering Malware (GREM)
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- Certified Ethical Hacker (CEH)
- Cisco Certified Network Professional Security (CCNP Security)
- Cisco Certified Network Professional (CCNP)
- Forensics Examiner Certification (EnCE, FTK)
- Server Platform Certifications (Microsoft, Linux)
