CareerZen Logo
Company logo

Journeyman Cyber Intelligence Analyst

Peraton

Full-time

Linthicum, MD

Job description

*This posting will be active until Feb 19th.*

Job Description

The Cybersecurity Analyst plays a key role in monitoring, analyzing, and strengthening the organization's cybersecurity posture. This role is responsible for threat detection, incident response, vulnerability management, and supporting IT audits. The ideal candidate will have strong technical expertise, knowledge of security best practices, and experience supporting audits in a financial services environment.

The candidate should have a deep understanding of various information security technologies and approaches, enabling them to conduct accurate security assessments and ensure robust protection of critical systems and data.

Key Responsibilities

Security Monitoring & Incident Response

  • Monitor security alerts and logs continuously using SIEM tools to detect and respond to threats.
  • Investigate security incidents, conduct forensic analysis, and escalate issues as necessary.
  • Assist in the development and execution of the Incident Response Plan (IRP), including participation in tabletop exercises.
  • Analyze phishing attempts, malware threats, and unauthorized access activities.
  • Ensure security playbooks and standard operating procedures (SOPs) are maintained and updated.

IT Audit Support & Compliance Monitoring

  • Support internal and external IT audits by collecting security evidence, logs, and documentation.
  • Assist in conducting User Access Reviews (UARs) to ensure least privilege access is enforced.
  • Coordinate with IT teams to provide documentation on vulnerability management, patching, and security controls.
  • Ensure adherence to industry security frameworks such as NIST 800-53, ISO 27001, CIS Controls, and FFIEC IT Examination Handbook.
  • Provide auditors with information on log retention, incident handling, and security monitoring processes.
  • Assist in ensuring third-party vendors meet security requirements, including security due diligence assessments.
  • Vulnerability & Risk Management
  • Conduct vulnerability scans using tools and work with IT teams to remediate findings.
  • Perform risk assessments and document potential security gaps, providing recommendations for mitigation.
  • Ensure that patch management policies are followed, and security updates are implemented.
  • Assist in managing endpoint security tools, such as EDR, anti-malware, and application whitelisting solutions.

Security Awareness & Architecture Assessments

  • Perform security assessments and provide recommendations for enhancing security controls across the organization.
  • Partner closely with IT teams to ensure proper firewall configurations, IDS/IPS rules, and VPN security settings.
  • Conduct assessments on Data Loss Prevention (DLP), Web Application Firewalls (WAF), and Endpoint Detection & Response (EDR) tools to improve security resilience.
  • Assist in application security assessments by reviewing secure coding practices and vulnerability scans.
  • Ensure security best practices are implemented across cloud and on-premises environments.

Collaboration & Reporting

  • Partner with IT and security teams to enhance security controls and architecture.
  • Prepare reports on cybersecurity incidents, audit findings, and security trends for leadership.
  • Stay up to date on emerging threats, vulnerabilities, and financial industry security trends.

Qualifications / Requirements

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Information Security, a related field, or equivalent experience.
  • 5 years of hands-on experience in cybersecurity, IT security, or security operations (SOC), preferably in the financial industry.
  • Experience supporting internal and external IT audits related to cybersecurity policies, procedures, and compliance frameworks.
  • Prior experience with financial institution security standards such as FFIEC, ISO 27001, CIS Controls, or NIST 800-53.

Technical Skills & Competencies

  • Security Assessments & Risk Analysis: Ability to evaluate security controls and recommend improvements.
  • SIEM Management: Experience configuring and reporting on SIEM tools.
  • Firewall & Network Security: Strong knowledge of firewalls, IDS/IPS, and VPN security.
  • Endpoint Protection & Threat Detection: Hands-on experience with EDR, anti-malware, and behavioral analytics tools.
  • Data Loss Prevention (DLP): Understanding of DLP policies and implementation strategies.
  • Web Application Security (WAF): Experience with WAF tools and application security best practices.
  • Vulnerability Management: Proficiency in vulnerability scanning tools.
  • Identity & Access Management (IAM): Experience with least privilege access, MFA, RBAC, and SSO.
  • Cloud Security Knowledge: Understanding of AWS, Azure, or GCP security configurations.

Preferred Certifications

  • Certified Information Systems Security Professional (CISSP) – or actively working towards it.
  • Certified Ethical Hacker (CEH) – for hands-on penetration testing knowledge.
  • GIAC Security Essentials (GSEC) – foundational technical security knowledge.
  • Certified Information Systems Auditor (CISA) – for IT audit and compliance expertise.
  • CompTIA Security+ – for entry-level security proficiency.
  • Experience with cloud security (AWS, Azure, GCP) and cloud security tools.
  • Familiarity with security automation and scripting (Python, PowerShell, Bash).
  • Understanding of Zero Trust Architecture and implementation best practices.

About Symmetry

Symmetry Lending specializes in providing mortgage fulfillment services to include origination, servicing, and capital markets needs to various Lenders across the country with whom we partner. We have offices in Atlanta, GA, Eden Prairie, MN, Orlando, FL, and Anaheim, CA, and we do business from coast to coast. We take great pride in building a diverse team of motivated professionals that contribute to an exciting work atmosphere. We provide a competitive benefits package including medical, dental, and vision plan options, paid time off, and more.

California Disclosure - Employee Notice at Collection

This disclosure is intended to comply with the California Consumer Privacy Act (CCPA), which gives California residents who are applicants, employees, or contractors of Symmetry Lending (“Symmetry”) the right to know what categories of personal information Symmetry collects about them and the purposes for which Symmetry uses that information. As used in this Privacy Notice, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular individual or household. Personal Information includes, but is not limited to, the categories of personal information identified below if such information identifies, relates to, describes, is reasonably capable of being associated with, or could be reasonably linked, directly or indirectly, with a particular individual or household.

The following is a list of the categories of Personal Information that we may collect about consumers:

· Identifiers. This may include a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver's license number, passport number, or other similar identifiers.

· Personal information described in the California Customer Records Statute (Cal. Civ. Code § 1798.80(e)). This may include a name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, or any other financial information, medical information, or health insurance information.

· Characteristics of Protected Classification under California or Federal Law. This may include age, race, color, ancestry, national or ethnic origin, citizenship status, religion or belief, marital status, a childbirth or related medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth, and related medical conditions), sexual orientation, veteran or military status.

· Biometric information. This may include voice and video recordings.

· Sensory data. This may include audio, electronic, visual, or similar information, including photos.

· Professional or employment-related information. This may include current or past job history, compensation data, performance evaluations, or employee benefits.

  • Beneficiaries, dependents, and emergency contact information. This may include the name, gender, phone number, and relationship of beneficiaries, dependents, and emergency contacts.

We may use the categories of Personal Information for the following business or commercial purposes:

  • To perform background checks necessary to comply with licensing requirements, to perform reference checks, to verify eligibility to work in the United States, for contact purposes, to assess your qualification for employment, to conduct performance evaluations, for payrolls and budgeting purposes, for implementation of employee benefits, for internal organizational purposes to establish proper accommodations for sick time, PTO, leaves of absences, or emergency situations, and to conduct health screenings as allowed by OSHA and the CDC to protect the safety of our employee during pandemic situations.
  • For internal use, such as tracking access into buildings, timekeeping, activity logs, etc.
  • To comply with laws and regulations, including but not limited to applicable tax, health and safety, anti-discrimination, immigration, labor and employment, and social welfare laws.
  • For security or the prevention, detection, or investigation of fraud, suspected or actual illegal activity, violations of company policy or rules, or other misconduct.
  • To comply with civil, criminal, judicial, or regulatory inquiries, investigations, subpoenas, or summons.
  • To comply with all licensing requirements necessary for our business operations, including state exam audits.
  • To exercise or defend the legal rights of Symmetry and its employees, affiliates, customers, contractors, and agents.
  • To seek advice from lawyers, auditors, or other professional advisors.

If Symmetry uses Personal Information of an applicant, employee, or contractor for a purpose materially different than those disclosed in this notice, Symmetry will notify the employee and obtain explicit consent from the employee to use the Personal Information for this new purpose.

Job Type: Full-time

Pay: $115,000.00 - $145,000.00 per year

Benefits:

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Employee assistance program
  • Flexible spending account
  • Health insurance
  • Health savings account
  • Life insurance
  • Paid time off
  • Vision insurance

Schedule:

  • Monday to Friday
  • On call

Ability to Commute:

  • Anaheim, CA 92807 (Required)

Work Location: In person

Check match with AI Enhance resume with AI Source