Cybersecurity Operations Analysts Principals #IN1269

Responsible for ensuring information and data on computer systems is protected and all networks and computer systems are adequately secure to prevent unauthorized access. Lead execution of complex response to computer security incidents according to the Information Security Policies and Industry Best Practices. Lead efforts of and provide timely updates and recommendations to multiple business units during response. Contribute to a team of cybersecurity professionals while working with threat data, writing reports, briefing event details to leadership, and coordinating remediation with personnel. Lead analysis of potential impact of new threats and exploits and communicate risks to Cyber Security Engineering. Monitor information security related web sites including SANS Internet Storm Center and mailing lists – BugTraq, to stay up to date on current attacks and trends. Ensure technology employed by the Incident Response team compliments operational processes. Investigate and analyze relevant response activities using Cybersecurity Incident Response plans to end malicious activity and restore business operations. Understand and apply concepts of computer forensics. Provide guidance to tier one and other first responders for proper handling of Information Security Incidents. Perform operations according to Cybersecurity Defense Operations plan to detect and mitigate potential or real-time internal and external threats. Participate in industry task forces and working groups where appropriate to understand current and future threats. Develop requirements for technical capabilities for cyber incident management. Recommend configuration changes to improve the performance, usability, and value of cyber analysis tools. Assess internal and external cybersecurity attacks using cybersecurity standards and tools including Security Orchestration Automation & Response (SOAR) to identify specific vulnerabilities. Manage the information security data sources to maintain organizational situational awareness. Trouble-shoot very complex, cross-business issues within existing security and privacy protections. Perform root cause analysis and make recommendations on changes. Coach and mentor less senior Cyber Security employees. Identify and manage risks, recommending improvements to Incidents Response Processes and Procedures. Develop strong relationships to deliver business value using Business Relationship Management practices. Cummins is an equal opportunity employer. Our policy is to provide equal employment opportunities to all qualified persons without regard to race, sex, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity, or other status protected by law. Apply To This Job