Cyber Security Analyst na TruWest Holdings

TruWest Holdings is a private holding company that scales companies in the enterprise technology space by providing strategic leadership, operational expertise and financial resources. Privately owned by the Kennedy Family, it operates subsidiaries located in the United States, Canada, UK and Europe.

TruWest Holdings’ portfolio includes TRG, a global managed service provider; Inversion6, tailored cybersecurity solutions; River Capital Finance, equipment leasing/financing; River SaaS Capital, debt and equity investments for B2B SaaS businesses; and Sibling Revelry Brewing, a craft brewery and taproom.

Headquartered in Westlake, OH, our environment, culture, and benefits are second to none. We make sure everyone lives and breathes our core values. From senior leadership to interns, everyone is evaluated on the same criteria. 

The Cyber Security Analyst will work as part of a security team responsible for monitoring the customer’s environment for potential security threats and incidents. This includes identifying, analyzing, investigating, and providing remediation recommendations to mitigate security threats. The analyst will work closely with other teams as part of the overall incident response process.

Accountabilities:

• Accountable for monitoring threats, investigating incidents, and handling escalations
• Ensure core processes adherence, service quality, and delivery consistency
• Partner with engineers on use of technology
• Learn secondary skills like forensics, threat hunting, etc.

Essential Functions:

• Monitor SIEM and cloud security tools for security incidents.
• Perform analysis and response to security incidents and related requests.
• Mentor associate analysts on threat assessments and incident investigations and provide feedback on work quality.
• Ensure compliance with team practices including shift change procedures, custom playbooks, and services.
• Log and document event responses as per security operations procedures.
• Perform basic application administration for security monitoring tools.
• Monitor security applications’ health and performance.
• Create and update security operations and technical documentation.
• Stay updated on emerging threats, particularly those affecting cloud and hybrid environments.
• Work with engineers on recommendations for SIEM tuning and filtering.
• Assist with threat-hunting initiatives leveraging AI-powered threat intelligence feeds.
• Support security automation and orchestration efforts to improve response times.
• Ensure compliance with relevant regulations (e.g., CMMC 2.0, NIST 800-171, GDPR, ISO 27001).

Qualifications:

• Minimum 3+ years of experience in cybersecurity.
• 2+ years’ experience with SIEM tools (LogRhythm, Splunk, Microsoft Sentinel, or similar).
• 2+ years of experience in the following:
• Security Vulnerability tools and processes.
• Network security controls such as IDS/IPS, firewalls, and Zero Trust implementations.
• TCP/IP and networking/system vulnerabilities.
• Security incident response processes and best practices.
• Log analysis, event correlation, and advanced threat-hunting techniques.
• Strong analytical and problem-solving skills.
• Self-starter with the ability to work independently and in a team environment.
• Experience with AI-powered SIEM solutions and SOAR tools.
• Preferred certifications: CompTIA Cybersecurity Analyst (CySA+), GIAC Certified Incident Handler (GCIH), or CompTIA Security+.

Performance Requirements:

• Must maintain regular and reliable attendance to the satisfaction of management.
• Must be able to operate a computer and security-related technologies.
• Must be able to verbally exchange confidential information with employees and clients.
• Must be available for crisis management by phone as needed.
• Must be able to work flexible hours if necessary.
• Must be comfortable working in a hybrid or remote environment if needed.
• Must always adhere to all company values.

Physical Requirements:

• Must be able to remain in a stationary position 75% of the time.
• Must be able to visually read written and digital information.
• Must be able to receive detailed information through oral communication.