Overview
Analyst IV – Cybersecurity Jobs in Raleigh, North Carolina, USA at Carpenter Technology Corporation
Title: Analyst IV – Cybersecurity
Company: Carpenter Technology Corporation
Location: Raleigh, North Carolina, USA
Type: Full Time
Category: IT/Tech, Security
Carpenter Technology Corporation With 130+ years of material and manufacturing process
leadership
, Carpenter Technology works with customers to provide alloy solutions for critical applications.
Carpenter Technology Corporation is a leading producer and distributor of premium specialty alloys, including titanium alloys, nickel and cobalt based superalloys, stainless steels, alloy steels and tool steels. Carpenter’s high-performance materials and advanced process solutions are an integral part of critical applications used within the aerospace, transportation, medical and energy markets, among other markets.
ANALYST IV – CYBERSECURITY
THE ANALYST IV – CYBERSECURITY WILL:
Perform and guide IT teams with Identity and Access Management (IAM) duties including user account provisioning, password vaulting, periodic access review, and encryption key management.
Perform advanced cyber-threat analysis, initialrisk assessment, and forensic examination.
Collaborate with Cybersecurity and IT teams to keep cybersecurity infrastructure in ready state. Administer security infrastructure including intrusion detection, data lossprevention, anti-virus, network and web application firewalls, VPN, web access filters, and encryption. Create/update standard operating procedures and as-built documentation. Routinely publish performance metrics.
Evaluate key security intelligence feeds, assess risk, and recommend actions for security control improvements.
Guide design of technical and procedural security controls.
Provide security and compliance guidance for IT projects intended to enable or advance business initiatives.
Steer IT and Business teams with secure integration of Cloud and Third-party Applications.
Advise IT teams regarding patch notifications, initialrisk assessment, eligible systems, and deployment requirements.
Perform vulnerability assessments including network scans (e.g., Qualys, Rapid 7, etc.) and application security testing (e.g., HP Fortify, IBM App Scan, etc.).
Perform periodic penetration testing (Ethical Hacking) and consult management on risk treatment plans.
Guide employees with security policy (e.g., password complexity, encryption settings, etc.) and advance cybersecurity awareness campaigns (e.g., Phishing email simulations).
Routinely publish Governance, Risk, and Compliance (GRC) metrics.
Examine design and operational effectiveness of security controls. Coordinate audit engagements led by Internal Audit, Regulator, or external audit firm.
Perform assessment of internal and third-party cybersecurity risk. Examine audit reports (e.g., SOC 1, SOC 2, ISO 27001, etc.). Prepare responses to customer inquiries about Carpenter compliance related to IT and Security.
Perform all other duties and special projects as assigned.
REQUIREMENTS FOR THE ANALYST IV – CYBERSECURITY
Bachelor of Science degree in computer science or related field.
Security certifications such as CISSP, CISA, CISM, CCSP, GCIH, GCIA, GSEC and CEH.
Minimum 7 years of related experience with Access Management, Security Operations, Network Security, Vulnerability Management, Compliance, or Audit.
Expert understanding of information technology.
Expert knowledge of multiple security domains and common security controls.
Familiarity with common hacking techniques (e.g., malware, phishing, etc.) and effective counter measures.
Adoption of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.).
Hands-onoperation of c…
