Cybersecurity Metrics Analyst

As a Cybersecurity Metrics Analyst, you will be pivotal in fortifying our organization's security posture. Your primary responsibility will be to analyze, measure, and report on various cybersecurity metrics, driving our decision-making processes and enhancing our overall risk management efforts. Your expertise will be instrumental in guiding our security strategies and ensuring compliance with industry standards.

Responsibilities

1. Security Fundamentals. Exhibit a deep understanding of information security fundamentals and a risk-based approach to cybersecurity.
2. Metrics Process Management. Oversee the end-to-end security metrics process, including the collection, tracking, and reporting of metrics, with clear ownership and responsibility for each phase.
3. Metric Development. Define, develop, and implement cybersecurity metrics in alignment with industry frameworks such as NIST CSF, NIST 800-53, ISO27001, PCI, and Privacy.
4. Automation and Visualization. Develop automated tools for calculating metrics and create visualization tools for effective reporting.
5. Data Analysis. Utilize industry-leading tools for data analysis and reporting, including complex macros and scripts for data mining from multiple sources.
6. Data Management. Identify, obtain, and cleanse relevant data consistently to design and produce insightful reports and dashboards on our cybersecurity posture.
7. Stakeholder Collaboration. Work closely with stakeholders to tailor metrics based on business objectives, risk appetite, and regulatory requirements.
8. Visualization Expertise. Create elegant and interactive data visualizations of complex information with drill-down capabilities.
9. Reporting. Design and produce advanced security and compliance metrics and dashboards for senior management.
10. Technical Skills. Leverage advanced skills in Microsoft PowerPoint, Publisher, and application development in environments like .NET, Cold Fusion, and LAMP.
11. Scripting. Utilize scripting languages (Python, Perl, Bash, PHP) for various tasks.

Qualifications

1. Education. Bachelor's degree in a relevant field, preferably with a focus on technology or data analysis and visualization.
2. Experience. Minimum of 5 years of experience in a similar role.
3. Certifications. Relevant IT and Information Security certifications such as CISSP, CISM, CISA, or similar are highly desirable.
4. Tools Expertise. Proficiency in data analysis and visualization tools such as Microsoft Power BI, Tableau, Alteryx, QlikSense/QlikView, or similar.
5. Industry Knowledge. Experience with IT security standards and control frameworks is preferred. Previous experience in manufacturing, IT, or consulting industries is advantageous.

Skills

1. Analysis & Evaluation. Strong analytical and assessment skills.
2. Consulting & Organization. Excellent consulting abilities and organizational skills.
3. Problem Resolution. Effective at problem identification and resolution.
4. Technology Proficiency. Knowledge of database and application security, network administration reporting, network communications technologies, server security policies and procedures, and access management.
5. Technical Documentation. Ability to produce comprehensive technical documentation.

Preferred Education and Experience

1. Education. Bachelor's degree.
2. Experience. 5 years in a related role.

Apply Now

If you are passionate about cybersecurity metrics and have a strong background in data analysis and visualization, we encourage you to apply. Join us and be a key player in shaping our organization's security strategy and ensuring our compliance with industry standards.