Cybersecurity Analyst

Due to onsite client delivery requirements, candidates must currently reside within a 50-mile radius of Greater Cincinnati, Ohio. This role involves regular in-person engagement and cannot be performed remotely.

TechSolve is a non-profit organization that is dedicated to empowering manufacturers across Southwest Ohio and beyond. As a proud sub-recipient of the Ohio Manufacturing Extension Partnership program, administered through the Ohio Department of Development and the National Institute of Standards and Technology (NIST), TechSolve provides invaluable support and resources to our industrial manufacturing community and community partners.

At TechSolve, our mission goes far beyond offering consultancy and advisory services. We are dedicated to equipping manufacturers with the tools, knowledge, and support they need to not only survive but thrive in today's rapidly evolving industrial landscape. For more information about TechSolve and our impactful mission, visit our website at www.techsolve.org.

Description

The Cybersecurity Analyst is primarily responsible for providing cybersecurity compliance and security guidance to TechSolve's clients. This role supports national defense supply chain and regional manufacturing resilience. The Cybersecurity Analyst will perform risk analyses, cybersecurity assessments, consultation, and technical writing. Secondary responsibilities include client training, personal training to maintain current cybersecurity and regulatory guidance skills, and administrative IT tasks. The Cybersecurity Analyst will be able to work independently but be guided by the Director of Cybersecurity.

Location: Hybrid - Due to on-site client delivery requirements, candidates must reside within a 50-mile radius of Blue Ash, Ohio (Greater Cincinnati Area) at the time of employment.

Employment Type: Full-Time

Clearance: U.S. Citizenship required; ability to obtain a DoD security clearance preferred

Essential Functions

• Conduct cybersecurity assessments and assist in remediation planning for TechSolve clients, ensuring projects are completed within the established timeframes and budgets.

• Assess and recommend secure network solutions and cybersecurity tools to ensure compliance with regulatory requirements.

• Utilize cybersecurity tools to perform assessments.

• Perform technical writing assignments supporting assessments and remediations, such as policies, procedures, plans, System Security Plans (SSPs), and Plans of Action and Milestones (PoAMs), that are in line with regulatory requirements and cybersecurity frameworks.

Secondary Functions

• Assist with the development of training materials and conduct training for TechSolve clients related to cybersecurity awareness.

• Follow a professional development plan to improve technical skills and cybersecurity and regulatory assessment skills.

• Perform and/or assist with administrative IT tasks, including serving as a point of contact for TechSolve's Managed Service Provider (MSP).

Requirements

Qualifications

Education/Experience:

• Bachelor's degree in IT, Cybersecurity, Networking, Computer Science, Engineering, or a related discipline

• 6 - 10 years of combined experience as a cybersecurity analyst, network engineer, systems administrator, or at an MSP or in-house Security Operations Center (SOC).

Required Skills/Competencies:

• Understand NIST SP 800-171, NIST SP 800-53, CMMC, NIST Cybersecurity Framework (CSF) and/or other industry-recognized cybersecurity frameworks.

• Understand and implement technical, administrative, or operational controls which align with one or more industry recognized IT and information security requirements such as NIST 800 special publications (e.g., NIST 800-171, NIST 800-53), NIST Cybersecurity Framework (CSF), COBIT, ISO 27001, and/or CIS.

• Possess foundational experience supporting IT or information security operations for one or more organizations.

• Write technical documentation related to assessment reports, system security plans (SSPs), plans of action and milestones (PoAMs), policies, procedures, plans, and other security-related documentation.

• Manage multiple simultaneous project schedules and complete projects on time and on budget.

• Possess one or more of the following certifications: CISSP, CMMC CCP/CCA, GSE CISA, PMP, OSCP, CASP+, CompTIA Security+, or equivalent combinations of IT and cybersecurity certifications.

Preferred Skills:

• Experience working as a consultant within IT or cybersecurity, or working as an organizational thought leader and managing IT and/or cybersecurity risk.

• Leading in or participating in 3rd party assessments including compliance, risk assessments, and/or other.

• Designing standards and best practices for IT and cybersecurity programs.

• Conducting risk identification exercises including vulnerability scanning, penetration testing, or cybersecurity compliance testing.

• Problem solving spanning operational and/or technical capabilities with the ability to identify/propose alternative solutions.

• System Administration in Microsoft environments including Active Directory, Domain Controllers, etc. Experience with PowerShell scripting a plus.

• Network engineering experience including researching and troubleshooting server infrastructure and network issues.

• Experience with researching and troubleshooting endpoint issues and concerns such as would be required of helpdesk support.

• Conduct research spanning multiple domains including regulatory, technical instructions, and organizational documentation to identify and provide guidance to remediate potential security or compliance gaps.

• Penetration Testing experience and certification is a plus.

Communication Skills:

Excellent oral and written communication skills with the ability to communicate clearly, professionally, and effectively in English (written and spoken) with client personnel and staff at all organizational levels and in a variety of environments. Must be able to develop effective working relationships with staff and a network of technical resources.

Reasoning Ability:

The individual must be a team player with the ability to exercise sound judgment and discretion; independently solve problems and multi-task; work well under pressure; take initiative; and be flexible and cooperative. The position requires complex reasoning and the ability to be flexible to meet client operational, cyber security, compliance, and essential organizational needs.

Physical Demands:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is regularly required to sit and operate a computer keyboard and monitor. The employee is frequently required to talk or hear, including the ability to communicate verbally both in person and on the telephone. The employee is required to walk, stand, bend, and reach with hands and arms. The employee must occasionally lift and/or move items weighing up to 10 pounds. Specific vision abilities required by this job include close vision, peripheral vision, depth perception, and ability to adjust focus.

What is in it for you:

TechSolve offers competitive compensation and a comprehensive benefits package that includes medical, dental, and vision. TechSolve pays 100% of group life, short-term and long-term disability. We provide a generous time-off benefit, including company paid holidays.

To be considered:

Submit a cover letter outlining your CCP or other credentials

Include a resume and copies of your certification(s) for validation

---