The role of the Security Operations Analyst is fundamental to the establishment and upkeep of a robust integrated security program. This program is designed to safeguard the integrity, confidentiality, and availability of our information systems assets. The analyst plays a pivotal role in ensuring the resilience of our security infrastructure by performing security administration functions and offering technical support on security-related matters to end-users. Key responsibilities include overseeing and monitoring computing practices across the organization to guarantee the security of individual and departmental access, rights, resources, and sensitive information. By doing so, the Security Operations Analyst acts as a guardian, proactively identifying and addressing potential vulnerabilities to prevent security breaches. In essence, this role is essential for maintaining a secure digital environment where our information assets are shielded from unauthorized access, and the confidentiality and availability of sensitive information are upheld. The analyst's work is integral to fostering a culture of cybersecurity, contributing to the overall resilience and reputation of our organization in the face of evolving cyber threats.

Job Functions:

• Perform security-monitoring functions on various platform types: network devices, servers, applications, and databases.
• Monitor SIEM (firewalls, servers, and web proxies), IDS/IPS, WAF logs to identify malicious activity and attack patterns and participate in the incident response process when suspicious activity is noted.
• Assist in implementation of corporate security policy functions/procedures that align to security mandates/standards that include Sarbanes-Oxley, HIPAA, and PCI compliance.
• Assist in maintaining policy and procedures that are designed to protect computer programs, databases, and data files from unauthorized or accidental duplication, modification, or destruction.
• Configure and monitor security products, which include anti-virus (A/V), APT, DLP, WAF, web content filtering, IDS/IPS, vulnerability scanners, forensics tools, SIEM, database monitoring, and e-mail content filters.
• Perform other duties as assigned.

Qualifications:

• Experience working with the following solutions: anti-virus, APT detection, data loss protection (DLP), WAF, web content filtering, IDS/IPS, vulnerability scanners, forensics tools, SIEM, DB monitors.
• Experience working with networking device components (i.e., managed switches, routers, and firewalls).
• Experience managing web content filtering, spam e-mail filtering, and e-mail related incidents.
• Experience with managing vulnerability scanning (static/dynamic) and penetration testing.
• Familiarity with fundamentals in networking/distributed computing environment concepts; ability to configure and/or correlate information in DNS and understand basic network routing concepts.
• Broad technical knowledge and experience which includes the following: TCP/IP, Active Directory, Microsoft Windows platforms (desktop/server), Open System platforms (desktop/servers), database platforms (SQL/Oracle). Programming and/or scripting experience preferred (e.g., Perl, Batch, or C).
• Service-oriented and must work easily with end users, IT administrators, and management.

Knowledge, Skills & Abilities:

• Scope: A cybersecurity analyst is responsible for protecting an organization's digital assets from cyber threats and unauthorized access. They monitor network traffic, investigate security incidents, and respond to breaches in real-time. Additionally, they develop and implement security protocols, conduct risk assessments, and ensure compliance with security standards. Their role is crucial in maintaining the integrity and confidentiality of sensitive information in an ever-evolving threat landscape.
• Problem solving: To excel as a cybersecurity analyst, you'll need a mix of technical and problem-solving skills. Key skills include analytical thinking, critical thinking, attention to detail, creativity, technical proficiency, communication, and adaptability. These skills help in identifying, evaluating, and addressing security threats to protect an organization's digital assets effectively.
• Impact: A cybersecurity analyst plays a crucial role in protecting an organization's digital assets by preventing and responding to cyber threats and unauthorized access. Their work helps maintain the integrity, confidentiality, and availability of sensitive information, thereby safeguarding the organization's reputation and financial stability.
• Leadership: This position will be an analyst and will be expected to learn from peers and colleagues.

Physical Demands: Must be able to remain in a stationary position at a desk and/or computer for extended periods of time. May need to stand for long periods of time.

Travel: Less than 25% with shipboard travel likely.

Work Conditions: Work may require employee to work inside and outside with exposure to changing climate and/or operate machinery.

This position is classified as “in-office.” As an in-office role, it requires employees to work from a designated Carnival office in South Florida Tuesday through Thursday each week. Employees may work from their homes on Mondays and Fridays. Candidates must be located in (or willing to relocate to) the Miami/Ft. Lauderdale area.