Management reserves the right to change the essential duties of this position description from time to time as necessary.
This position can be considered for an alternate work location for no more than one day per week.
Position Overview
The Cybersecurity Analyst is responsible for monitoring, analyzing, and responding to cybersecurity events and incidents within the organization. This role involves maintaining and improving the security posture of the organization by applying a range of technical and analytical skills to identify potential threats, vulnerabilities, and security gaps. The Cybersecurity Analyst works closely with the Cybersecurity Manager and network teams to implement security measures and respond to incidents promptly and effectively.
Supervisory Responsibility
This position does not have direct supervisory responsibilities but may provide guidance to junior team members or interns.
Essential Functions
The essential function of the IT Cybersecurity
Analyst includes but is not limited to:
Security Monitoring And Incident Response
- Continuously monitor the organization’s IT infrastructure for security breaches, vulnerabilities, and unauthorized access.
- Analyze security alerts and determine the appropriate response, including escalation to the IT Cybersecurity Manager when necessary.
- Respond to security incidents, conduct root cause analysis, and document findings in incident reports.
- Work with the cybersecurity team to develop and implement mitigation strategies to prevent future incidents.
Threat Analysis And Vulnerability Management
- Conduct regular vulnerability assessments and penetration tests to identify weaknesses in the network and system infrastructure.
- Analyze threat intelligence to understand the latest attack vectors and methods used by cybercriminals.
- Collaborate with the cybersecurity and network teams to remediate identified vulnerabilities and strengthen security controls.
Security Tools And Technology Management
- Manage and maintain cybersecurity tools such as firewalls, intrusion detection/prevention systems, antivirus software, and SIEM (Security Information and Event Management) platforms.
- Monitor and analyze logs from security tools to identify potential threats or anomalies.
- Assist in the deployment of security tools and technologies, ensuring they are configured and functioning correctly.
Policy And Compliance
- Assist in the development and enforcement of security policies and procedures to ensure compliance with industry standards and regulatory requirements.
- Participate in security audits and assessments to ensure adherence to established security frameworks and protocols.
- Provide recommendations for policy enhancements based on security trends and emerging threats.
Education And Awareness
- Provide cybersecurity training and awareness programs to employees to help them recognize and prevent security threats.
- Create and distribute security bulletins, newsletters, and other materials to keep staff informed about the latest security trends and best practices.
Educational Requirements
- Bachelor’s degree in Information Technology, Cybersecurity, Networking, or a related field, with a entry level experience in cybersecurity and Information Technology; OR equivalent professional experience.
- Relevant certifications such as Security+, CEH, or equivalent are preferred.
Skill, Knowledge And Experience Requirements
- In-depth knowledge of cybersecurity frameworks, particularly those aligned with the Open Group standards.
- Strong experience with secure network architecture, access control models, identity management systems, and network infrastructure.
- Proven experience in managing multi-faceted IT teams, including both cybersecurity and network professionals.
- Ability to effectively communicate complex security and network concepts to technical and non-technical audiences.
- Ability to effectively present information in one-on-one and small group situations.
- Ability to define problems, collect data, establish facts, and draw valid conclusions.
Must be 21 and older and have the ability to obtain and retain a Washington State Class III Gaming License; successfully pass a pre-employment drug screen.
Physical Requirements
The physical demands described here are representative of those that must be met by a team member to successfully perform the essential functions of this position.
While performing the duties of this position, the employee is frequently required to stand; walk; use hands to finger; handle; feel; or grip objects, stretch and/or reach with hands and arms; stoop; crouch or work in cramped or awkward positions; repetitive motions. This person may regularly lift and/or move up to 30+ pounds. Specific vision abilities required by this position include close vision, distance vision, depth perception, and ability to adjust to focus.
May be required to work nights, weekends and holidays as business requires.
Environment
The environment characteristics described here are representative of those a team member may encounter while performing the essential functions of the position.
Primarily indoors and may be exposed to heavy smoke and fluctuations in temperature while in and around on property. May also, from time-to-time be exposed to noise from slot machines, customers, music and public announcement system, as is common in a Casino and/or Hotel environment. Lucky Eagle Casino & Hotel operates in a 24/7 environment.
Property Requirements
In support of LEC&H’s Pride in Property values, this position, like all LEC&H positions, assists with the daily cleaning of public and team member spaces, ensuring all team members properly cleaning (to property standards) and sanitized; examples of daily cleaning protocols include but are not limited to the cleaning of work areas, machines, equipment, using cleaning and sanitizing agents and report of any and all cleanliness issues.