Cyber Security Specialist
Job Description
The Cyber Security Specialist is part of the Digital and IT teams and is responsible for protecting the organization’s information systems from cyber threats. This role involves identifying vulnerabilities, implementing security solutions, and ensuring compliance with security policies and regulations. The specialist will collaborate with the Digital and IT teams and business units to develop strategies for mitigating security risks while enabling business operations. This position may require periodic on-call availability and incident response outside of regular business hours. Hybrid or remote work arrangements may be available depending on company policies.
Duties and Responsibilities
- Monitor and analyze security threats and incidents, responding to cybersecurity events in a timely manner.
- Implement and maintain security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and security information and event management (SIEM) solutions.
- Conduct vulnerability assessments, penetration testing, and risk analysis to identify potential security risks and recommend remediation strategies.
- Develop and enforce security policies, standards, and best practices across the organization.
- Manage access control, identity and access management (IAM), and multi-factor authentication (MFA) solutions.
- Ensure compliance with industry regulations such as GDPR, HIPAA, ISO 27001, NIST, or other relevant security frameworks.
- Provide cybersecurity awareness training and guidance to employees to foster a security-conscious culture.
- Investigate and respond to security incidents, including forensic analysis and incident reporting.
- Work with IT and development teams to ensure secure software development and cloud security practices.
- Stay current with emerging cybersecurity threats, trends, and technologies to continuously enhance security posture.
Knowledge, Skills & Abilities
- Strong understanding of networking, operating systems (Windows, Linux), and security protocols.
- Knowledge of encryption, authentication, and access control principles.
- Ability to analyze and respond to security incidents effectively.
- Experience with running incident management processes.
- Familiarity with regulatory compliance and industry security standards.
- Excellent problem-solving, analytical, and communication skills.
- Ability to work independently and collaboratively in a fast-paced environment.
Education & Experience
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
- Three plus years of experience in cybersecurity and IT security.
- Experience with security tools such as SIEM, IDS/IPS, EDR, and vulnerability scanners.
- Knowledge of cloud security (AWS, Azure, Google Cloud) is a plus.
- Certifications (Preferred but not Required):
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- CompTIA Security+
- GIAC Security Certifications (GSEC, GPEN, etc.)
MarCom Group utilizes our own internal Talent Acquisition Organization to fill our employment needs. If you are contacted over the phone or e-mailed, by a company listing a MarCom Group job and requesting your personal information, allegedly on MarCom Group’s behalf, please do not respond.
MarCom Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.