Sr. Cyber Defense Analyst
Senior Cyber Defense Analyst
Find your more with Mohawk!
At Mohawk Industries, we are committed to more – more customer solutions, more process improvements, more sustainable manufacturing, and more opportunities for our people.
As a Fortune 500, global flooring leader with some of the best-known brands in the industry, Mohawk is a great place to start or develop your career with an emphasis on more of what’s important to you. Come find your “more” with Mohawk!
What we are looking for:
We are looking for a proactive Senior Cyber Defense Analyst to join our team and enhance our cyber defense capabilities. The ideal candidate will think like an attacker to understand how threats bypass security measures. Using your analytical skills, endpoint detection, and incident response experience, you'll identify indicators of compromise and work with our global infrastructure team to fix vulnerabilities. You'll also collaborate with a global team of incident response analysts in ongoing investigations. This role is crucial in managing responses to information security incidents and developing strong cyber defense strategies.
What you will do:
- Participate in cyber incident response teams (CIRTs), providing technical assistance to determine the nature and impact of cyber events/incidents and develop Courses of Action (COAs) for mitigation and/or remediation.
- Plan and conduct cyber threat hunting by leveraging threat intelligence, applying hunt techniques and methodologies to detect, track, and disrupt Advanced Persistent Threats (APTs).
- Analyze identified malicious activity to determine weaknesses exploited, exploitation methods, and effects on systems and information.
- Conduct root cause analysis of vulnerabilities and articulate findings in both spoken and written formats.
- Advise and approve tuning recommendations within security products to reduce the number of false-positives and false-negatives.
- Perform security assessments and deliver new security detection rules to enhance existing testing capabilities.
- Conduct moderately complex network architecture and cyber security analysis, product configuration, integration testing, and troubleshooting.
- Develop and manage security policies, standards, procedures, and processes aligned with frameworks such as CIS, ISO 27001/2, COBIT, ITIL, NIST, and PCI-DSS.
- Create asset lists, including software and firmware details, to support cybersecurity assessments.
- Provide network and system specification documentation deliverables to address cybersecurity vulnerabilities and the necessary security controls.
- Participate in cross-functional project teams to design, implement, and test cybersecurity standards, regulatory requirements, technologies, processes/procedures, and specifications.
- Author technical documentation, including product configuration/implementation guides, requirements traceability, test plans, test procedures, test reports, and user administration guides.
- Support the development of architecture, FAT/SAT procedures, and cybersecurity work for project execution.
- Collaborate with Global Functional Owners to develop Global Cyber Security work processes and procedures.
- Interpret cyber security program policies and support procedure development.
- Monitor and report control gaps in IT and cybersecurity programs, providing input for policy and procedure development.
- Perform governance and oversight functions by evaluating requirement document categorization, aligning controls, and minimizing redundancy in security policy portfolios.
- Perform other duties as needed.
What you need:
- Bachelor’s degree in a related field (preferred).
- Minimum 3 years’ experience in Information Technology (IT), Operational Technology (OT), or related field with at least 2 years focused on designing, building, and managing cybersecurity for industrial control systems and networks.
- Strong technical knowledge with the ability to present and explain technical information effectively.
- Superior verbal, written, presentation, and interpersonal communication skills.
- Certified Information Systems Security Professional (CISSP), GSOC, GDSA, GCIA, GCDA, or GX-IA (preferred).
- Experience with Threat Hunting, Cyber Defense, or Incident Response.
- Knowledge of digital forensics, computer operating systems, and enterprise network infrastructure.
- Experience with offensive security tools and attack techniques.
- Experience with EDR platforms and conventional network and host-based intrusion analysis.
- Deep understanding of cybersecurity principles, including the MITRE ATT&CK framework, threat landscapes, and attacker TTPs.
- Knowledge of security tools in Application, Data, Networks, and Endpoint layers.
- Ability to leverage resources to research threats, vulnerabilities, and intelligence on attackers and attack infrastructure.
- Experience with digital forensics from a malware perspective.
- Knowledge of network communications, routing protocols, Office 365 security features, Microsoft Windows, UNIX, and Mac.
- Experience with cybersecurity frameworks and standards, including the Policy Life Cycle Management (PLCM) process.
- Working knowledge of Variable Frequency Drives (VFD’s) and key technologies including Firewalls, IDS, Anti-Virus, Vulnerability assessments in ICS/OT networks.
- Cybersecurity-relevant accreditations such as CRISC, CISSP, CISM, CISA, CCSP, ISA/IEC62443, SANS or other internationally recognized certifications (preferred).
- Additional cybersecurity certifications such as CISM, ISO 27001, NIST800, CSET, etc., will be a plus.
What will make you successful:
- Exceptional skills in verbal, written, presentation, and interpersonal communication; adeptness in interacting and negotiating tactfully and prudently with both internal and external stakeholders as well as senior management; and the ability to communicate effectively under pressure using suitable interpersonal techniques to ease tension or conflicts while maintaining professionalism in line with corporate standards.
- Strong technical expertise, combined with the ability to clearly convey technical information to build rapport, persuade others, and ensure understanding.
- Willingness to take on responsibility, challenge established practices, draw relevant conclusions, consistently take calculated risks, and advocate for new ideas within the organization.
- Excellent leadership skills to mentor a diverse global team and achieve results through collaborative efforts, along with the enthusiasm and capacity to direct and inspire the activities of others.
- The ability to serve as an advisor on professional and technical matters for strategic decision-making and manage competing resource demands through negotiation.
- Ability to perform well in high-pressure situations or crises, make sound decisions to resolve issues, maintain safety, and adhere to the Corporate Code of Conduct.
- In-depth conceptual and practical knowledge in your job discipline.
- Outstanding communication, problem-solving, and organizational abilities.
- Proficiency in multitasking, prioritizing, and efficient time management.
- High integrity and discretion when handling sensitive and confidential information.
- Expertise with Microsoft Office Suite products.
- A flexible attitude, adaptability to change, a teamwork orientation, and the capability to handle multiple projects simultaneously.
- Professionalism, sound judgment, maturity, and resourcefulness in situations lacking formal guidelines and procedures.
- Normal office environment with occasional domestic/international travel (up to 20%/year).
- Must be able to lift 40 lbs., climb ladders and stairs.
- Ability to perform well in high-pressure environments or crises, making sound decisions to resolve problems.