Leon Kinloch

Information security analystFull Time

• Job Details:Cybersecurity analyst skilled in Linux, AD, Networking, Wireshark, and Governance. A detail-oriented problem solver with a strong background in customer service and communications. Equipped with the determination and drive to solve complex cyber security challenges, as well as the foundational IT skills needed for broader issues. Cyber Threat Fusion Center team as an analyst 24x7, we participate in monitoring, threat identification, analysis, case management and incident response. Monitor network for cyber security events and anomalies using a variety of tools such as Netwitness and Splunk (SIEM). Roles and Responsibilities: -Monitor network for cyber security events and anomalies using a variety of tools such as Netwitness and Splunk (SIEM). - Conduct base level analysis to determine the legitimacy of files, domains, and emails using tools such as Twinwave, Virus Total, URL scan, and Symantec site review. - Conduct annual review of case documentation and develop detailed recommendations for mitigating risk and process improvements. - Collaborate with internal teams and 3rd party vendors to mitigate risk and address suspicious security activity. - Knowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF) Cybersecurity Metrics Governance The following teams work in partnership to manage, monitor, and ensure the quality of the metrics within the Cybersecurity Metrics Portfolio. Information security front-line Responsible, Accountable, Consulted, and Informed. Roles and Responsibilities: - Collecting front-line IS indicators, metrics, and measurements. - Managing the metric inventory and modification change request process. - Managing the end-to-end metric automation process, including stakeholder engagement and Tableau reporting. - Providing services that manage the end-to-end life cycle of Cybersecurity metrics. - Experience mapping common controls across multiple frameworks in a GRC tool. Familiarity with various regulatory requirements and laws, including but not limited to PCI, NACHA, SOX, HIPAA, GDPR and GLBA. Information Security Risk -Perform asset level risk assessments to assess security controls and identify findings. -Support transformation activities, including the transition to a new assessment tool and process. -Performs timely identification, assessment, and aggregation of current and emerging information security risks. this work includes quantitative metrics and qualitative assessment criteria and positions the Company to address and escalate any identified information security risks. -Determines the need for business-specific controls versus existing enterprise controls. -Manages risk treatment decisions. -Conducts targeted deep dive reviews to identify and evaluate internal and external information security events.