Analyst, Cyber Security Operations

The role of the Security Operations Analyst is fundamental to the establishment and upkeep of a robust integrated security program. This program is designed to safeguard the integrity, confidentiality, and availability of our information systems assets. The analyst plays a pivotal role in ensuring the resilience of our security infrastructure by performing security administration functions and offering technical support on security-related matters to end-users.

Key responsibilities include overseeing and monitoring computing practices across the organization to guarantee the security of individual and departmental access, rights, resources, and sensitive information. By doing so, the Security Operations Analyst acts as a guardian, proactively identifying and addressing potential vulnerabilities to prevent security breaches. In essence, this role is essential for maintaining a secure digital environment where our information assets are shielded from unauthorized access, and the confidentiality and availability of sensitive information are upheld. The analysts work is integral to fostering a culture of cybersecurity, contributing to the overall resilience and reputation of our organization in the face of evolving cyber threats.

Essential Functions:

• Perform security-monitoring functions on various platform types: network devices, servers, applications, and databases.
• Monitor SIEM (firewalls, servers, and web proxies), IDS/IPS, WAF logs to identify malicious activity and attack patterns and participate in the incident response process when suspicious activity is noted.
• Assist in implementation of corporate security policy functions/procedures that align to security mandates/standards that include Sarbanes-Oxley, HIPPA, and PCI compliance.
• Assist in maintaining policy and procedures that are designed to protect designed computer programs, databases, and data files from unauthorized or accidental duplication, modification, or destruction.
• Configure and monitor security products, which include: anti-virus (A/V), APT, DLP, WAF, web content filtering, IDS/IPS, vulnerability scanners, forensics tools, SIEM, database monitoring, and e-mail content filters.

Knowledge, Skills & Abilities:

Scope: A cybersecurity analyst is responsible for protecting an organizations digital assets from cyber threats and unauthorized access. They monitor network traffic, investigate security incidents, and respond to breaches in real-time. Additionally, they develop and implement security protocols, conduct risk assessments, and ensure compliance with security standards. Their role is crucial in maintaining the integrity and confidentiality of sensitive information in an ever-evolving threat landscape.

Problem solving: To excel as a cybersecurity analyst, youll need a mix of technical and problem-solving skills. Key skills include analytical thinking, critical thinking, attention to detail, creativity, technical proficiency, communication, and adaptability. These skills help in identifying, evaluating, and addressing security threats to protect an organizations digital assets effectively.

Impact: A cybersecurity analyst plays a crucial role in protecting an organizations digital assets by preventing and responding to cyber threats and unauthorized access. Their work helps maintain the integrity, confidentiality, and availability of sensitive information, thereby safeguarding the organizations reputation and financial stability.

Leadership: This position will be an analyst and will be expected to learn from peers and colleagues.

For all roles:

Knowledge: Understanding of workplace policies and procedures / Familiarity with team collaboration tools and techniques.

Skills: Strong time management and organizational skills

Abilities: Ability to maintain reliable and consistent attendance / Capacity to be punctual and meet deadlines / Ability to collaborate effectively with colleagues and work as part of a team / Demonstrated professionalism in all interactions and tasks.

Qualifications:

• Experience working with the following solutions: anti-virus, APT detection, data loss protection (DLP), WAF, web content filtering, IDS/IPS, vulnerability scanners, forensics tools, SIEM, DB monitors.
• Experience working with networking device components (i.e., managed switches, routers, and firewalls).
• Experience managing web content filtering, spam e-mail filtering, and e-mail related incidents.
• Experience with managing vulnerability scanning (static/dynamic) and penetration testing.
• Familiarity with fundamentals in networking/distributed computing environment concepts; ability to configure and/or correlate information in DNS and understands basic network routing concepts.
• Broad technical knowledge and experience which includes the following: TCP/IP, Active Directory, Microsoft Windows platforms (desktop/server), Open System platforms (desktop/servers), database platforms (SQL/Oracle)
• Programming and/or scripting experience preferred (e.g., Perl, Batch, or C)
• Service-oriented and must work easily with end users, IT administrators, and management.

Work Conditions:

• Work primarily in a climate-controlled environment with minimal safety/health hazard potential.
• Must be able to remain in a stationary position at a desk and/or computer for extended periods of time.
• This position is classified as "in-office." As an in-office role, it requires employees to work from a designated Carnival office in South Florida Monday through Thursday each week. Employees may work from their homes on Fridays.
• Candidates must be located in (or willing to relocate to) the Miami/Ft. Lauderdale area.

About Us

Carnival Corporation & plc is the world's largest leisure travel company, our mission to deliver unforgettable happiness to our guest through our diverse portfolio of leading cruise brands and island destinations, including Carnival Cruise Line, Holland America Line, Princess Cruises, and Seabourn in North America and Australia; P&O Cruises and Cunard Line in the United Kingdom; AIDA in Germany; Costa Cruises in Southern Europe.

Join us and embark on a career that offers not only the chance to grow professionally but also the opportunity to be part of a global community that makes a difference.

In addition to other duties/functions, this position requires full commitment and support for promoting ethical and compliant culture. More specifically, this position requires integrity, honesty, and respectful treatment of others, as well as a willingness to speak up when they see misconduct or have concerns.

Carnival Corporation & plc and Carnival Cruise Line is an equal employment opportunity/affirmative action employer. In this regard, it does not discriminate against any qualified individual on the basis of sex, race, color, national origin, religion, sexual orientation, age, marital status, mental, physical or sensory disability, or any other classification protected by applicable local, state, federal, and/or international law.

https://www.dol.gov/sites/dolgov/files/WHD/legacy/files/eppac.pdfhttps://www.dol.gov/sites/dolgov/files/WHD/legacy/files/fmlaen.pdf