Cybersecurity Analyst

Hollyfrontier Corporation Dallas , TX 75201

Posted 2 months ago

HollyFrontier Corportion located in Dallas, TX is seeking a Cybersecurity Analyst. The Cybersecurity Analyst will be responsible for improving the overall security posture of the organization. The Cybersecurity Analyst will evaluate, test, and document security solutions and controls, and work closely with other security team members to remediate risk while ensuring the business is able to innovate.

The Cybersecurity Analyst must continually adapt to stay a step ahead of cyber attackers and stay up to date on the latest methods attackers use to infiltrate computer systems. The Cybersecurity Analyst in this role are expected to consistently learn and grow. This is not a passive career opportunity, but rather one that requires a passion for security and rigor to protect the business.

The Cybersecurity Analyst will collaborate with internal and external audit and exam teams, along with technology management and business stakeholders.

This position is not eligible for International Relocation Program benefits.

ESSENTIAL JOB DUTIES/RESPONSIBILITIES: (functions considered essential as defined by ADA)

  • Implement technical systems and monitor them for unusual and suspicious activity across a wide range of products.

  • Assist with security configuration standards for systems and business applications.

  • Serve as a member of the cybersecurity and change management teams.

  • Participate in technical and non-technical projects requiring cybersecurity oversight and to ensure policies, procedures and standards are met.

  • Serve as an additional security team member, aiding in incident response (IR) with the IR and security operations center (SOC) teams.

  • Maintain vendor management standards, questionnaires and documentation to adhere to regulatory compliance.

  • Interface with internal and external auditors for risk assessments.

  • Recommend new security solutions as well as effective improvements to existing security controls that do not negatively impact business innovation.

  • Serve as a liaison for the security team.

Special assignments or tasks assigned to the employee by their supervisor, as determined from time to time in their sole and complete discretion.

EXPERIENCE:

  • At least 5 to 7 years of cybersecurity experience (or combination of 5 to 7 years of IT system administration with security).

  • Expertise in incident response and system monitoring and analysis.

  • Experience with compliance requirements (GLBA, PCI, HIPAA, SOX, etc.).

  • Ability to effectively communicate business risk as it relates to cybersecurity.

  • Experience in conducting risk assessments that protect the business and adhere with compliance and privacy laws.

  • Knowledge of multiple computing platforms, including Windows, OSX, Linux, Unix, networks and endpoints.

  • Experience with vulnerability and penetration testing engagements.

  • Experience with change and project management.

  • Possesses highly effective communications skills with the ability to influence business units.

  • Acts with integrity, takes pride in work and seeks to excel, be curious and adaptable.

  • Displays an analytical and problem-solving mindset.

  • Is highly organized and efficient.

  • Leverages strategic and tactical thinking.

  • Works calmly under pressure and with tight deadlines.

  • Demonstrates effective decision-making skills.

  • Is highly trustworthy and leads by example.

  • Stays current with evolving threat landscape.

EDUCATION LEVEL:

Bachelor's degree in computer science, information assurance, MIS or related field, or equivalent.

REQUIRED SKILLS:

  • 5-7 years of related experience required
  • SANS GSEC, GCIA, Security+ (and related)

WORK CONDITIONS:

Office based with travel up to 25% of time by land or air is required. Work conditions may require working petroleum refinery environment, warehouse and plant environments occasionally. Subject to varying road and weather conditions. Occasional long hours, as well as nights and weekends as needed.

PHYSICAL REQUIREMENTS:

Job conditions require sitting, talking, hearing, making visual inspections, and making precise hand and finger movements. Job conditions may require standing, walking, and wearing personal protective equipment (beards not permitted)

ENVIRONMENTAL, HEALTH, & SAFETY RESPONSIBILITIES:

Our primary values at HollyFrontier are: We put health and safety first; we care about the environment.

All HollyFrontier employees are expected to work safely every day and be safety & environmental leaders. This includes active participation in the following:

  • Stops and/or reports any unsafe work or conditions.

  • Follows safety & environmental policies and procedures.

  • Supports safety & environmental goals and initiatives.

  • Participates in safety & environmental meetings, training, emergency drills and hazard recognition programs.

  • Reports all accidents, injuries and near misses, and participates in associated investigations.

  • Participates in industrial hygiene, medical surveillance and behavior based safety programs.

About HollyFrontier Corporation

HollyFrontier Corporation, headquartered in Dallas, Texas, is an independent petroleum refiner and marketer that produces high value light products such as gasoline, diesel fuel, jet fuel and other specialty products. HollyFrontier operates through its subsidiaries a 135,000 barrels per stream day ("bpsd") refinery located in El Dorado, Kansas, a 125,000 bpsd refinery in Tulsa, Oklahoma, a 100,000 bpsd refinery located in Artesia, New Mexico, a 52,000 bpsd refinery located in Cheyenne, Wyoming and a 45,000 bpsd refinery in Woods Cross, Utah. HollyFrontier markets its refined products principally in the Southwest U.S., the Rocky Mountains extending into the Pacific Northwest and in other neighboring Plains states. In addition, HollyFrontier, through its subsidiary, owns Petro-Canada Lubricants Inc. whose Mississauga, Ontario facility produces 15,600 barrels per day of base oils and other specialized lubricant products, and also owns a 57% limited partner interest and a non-economic general partner interest in Holly Energy Partners, L.P.

Join HollyFrontier where you have the opportunity to develop and own your career!

HollyFrontier Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status or any other prohibited ground of discrimination.


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cybersecurity Senior Manager

Crowe Horwath

Posted 1 week ago

VIEW JOBS 11/7/2018 12:00:00 AM 2019-02-05T00:00 Cybersecurity Senior Manager Req #: 17455_3 Location: Dallas, TX Job Category: Risk Consulting Job Summary Joining our Risk Consulting Financial Services practice is an opportunity to help make the world more honest, transparent, safe, and secure. From day one of your career, you will assist our clients to transform their governance, embed risk in their decision-making and maintain efficient compliance. We will enable an entrepreneurial and innovative environment for you to deliver transformative risk consulting services and to develop deeply specialized skill sets demanded in today's market. The Cybersecurity Senior Manager will be responsible for directing engagement teams while providing industry thought leadership in developing strategies, planning, high-level assessment and design review for a wide range of clientele. The Senior Manager will sell and direct sizeable projects for large clients in the analysis, evaluation and enhancement of information systems to develop and improve security at both a procedural and technology level. This Senior Manager will be a visionary professional services business leader with a penchant for hands-on facilitation for realizing new business and market development opportunities for the organization in North America. This company seeks an experienced Senior Manager with a global perspective who will inspire and lead the ongoing growth of Cybersecurity Solutions activities within North America. This individual will work directly with other project leads, managers, and/or executives to communicate business and technical aspects of the work being performed. The Cybersecurity Senior Manager will set performance expectations for their team and provide constructive performance feedback on a regular basis. This person will assist the engagement economics of the projects, including budget status tracking, billing, and collection analysis. The Cybersecurity Senior Manager will perform the following responsibilities: * Lead Cybersecurity Projects and Solutions, including but not limited to: * Cybersecurity Strategic Advisory * Information Security and Risk Management Consulting * IT Risk Assessment * Cybersecurity Assessments * Penetration Testing * Incident and Breach Response * Cloud Security Reviews * IT Security Technology Implementations * Prepare reports or other necessary documentation to detail results of evaluation and otherwise meet the objectives of the Project. * Submit recommendations to client for corrective action or to support a recommend approach to solving the client's needs. * Participate in planning and implementing of client information systems, including structure, process, and security. * Participate in strategic and tactical objectives to include new product offerings, identify additional client needs, and generating new business leads. * Correspond with a variety of clients and communicate security issues, recommendations, and deliverables effectively. * Evaluate and/or implement cybersecurity solutions and controls to ensure data security and integrity for our clients. * Generate ideas for new cybersecurity solutions aligned with our clients evolving needs Company Overview Your Journey at Crowe Starts Here: At Crowe, you have the opportunity to deliver innovative solutions to today's complex business issues. Crowe's accounting, consulting, and technology personnel are widely recognized for their in-depth expertise and understanding of sophisticated process frameworks and enabling technologies, along with their commitment to delivering measurable results that help clients build business value. Our focus on emerging technology solutions along with our commitment to internal career growth and exceptional client value has resulted in a firm that is routinely recognized as a "Best Place to Work." We are 75 years strong and still growing. Come grow with us! Qualifications * Bachelor's degree required, candidates must possess significant analytical skills, which likely evolved from early academic training in Cybersecurity, Information Systems, Computer Science, or similar discipline. * Minimum 10 years' of business experience in the areas of Information Security. * Experience meeting business development goals * Certified Information Systems Security Professionals (CISSP) or willingness to obtain * Experience within consulting or professional services, or at leading industry public companies is preferred. * Strong leadership experience in the areas of Information Security. * Knowledge of internetworking technology * Strong presentation skills * System and network administration experience on UNIX, Linux, and Microsoft Windows. * Knowledge of security areas such as Auditing, Policy, Database Security, Firewall Design and Implementation, Risk Analysis, Identity Management, Access Management, or Web Services is very desirable. * Strong writing and interpersonal communication skills. * The ability to handle multiple projects concurrently. * This position requires national travel of 60% or higher. Additional Skills Desired: * Experience with solution development or innovation * Consulting practice management * CISSP, OSCP, or other relevant information security or cybersecurity certifications Technology: * Network Security Practices: Auditing, planning, design, implementation, testing, and management * Microsoft Windows, Red Hat Linux, IBM AIX, and other UNIX/Linux variants * Microsoft Active Directory and Group Policy * Network architecture and protocols: TCP, UPD, IP, HTTP(S), DNS, NetBIOS, SMB, SSH, IPSec, EIGRP, OSPF, BGP, TLS, and others * Microsoft SQL Server, Oracle, IBM DB2, and others * Penetration Testing tools : Burp, Nmap, Metasploit, Empire, Cobalt Strike, and others * Intrusion Detection, Intrusion Prevention, Security Information and Event Management solutions * Cryptographic tools, suites, and algorithms ABOUT THE TEAM: Risk Consulting is organized by both industry specializations (financial services, healthcare, public sector, GRC Technologies Integration and emerging industries) and solutions (anti-money laundering, regulatory and compliance, internal audit, cybersecurity, emerging global solutions, GRC Technologies and third party risk). Risk Consulting provides governance, risk and compliance expertise to keep clients advised of emerging trends, industry benchmarks and best practices. At Crowe, we strongly endorse an open door policy. Our partners are approachable and accessible across the entire organization. Our team-based culture encourages partners to be in touch with our professionals and active on client projects. The partners of our company lead by example and maintain a strong two-way channel of communication with their teams. We strive to create an environment that is relaxed, fun, dynamic and fulfilling. Our team-based culture has not only resulted in successful projects, but in long lasting friendships as well. Overall, our people find their career choices to be highly rewarding and fulfilling. HOW YOU CAN GROW: We will nurture your talent in an inclusive culture that values diversity. You will have the chance to meet on a consistent basis with your Career Coach that will guide you in your career goals and dreams. Crowe (www.crowe.com) is one of the largest public accounting, consulting and technology firms in the United States. Crowe uses its deep industry expertise to provide audit services to public and private entities while also helping clients reach their goals with tax, advisory, risk and performance services. Crowe is recognized by many organizations as one of the country's best places to work. Crowe serves clients worldwide as an independent member of Crowe Global, one of the largest global accounting networks in the world. The network consists of more than 200 independent accounting and advisory services firms in more than 130 countries around the world. Visit Crowe.com and find out what it's like to work at one of the "50 Best Workplaces for New College Graduates." Crowe ranked seventh on this Fortune list, in addition to being named one of Fortune's "Top 100 Best Companies to Work For" and among Fortune's "20 Best Workplaces in Consulting & Professional Services". In these surveys, Crowe personnel attribute the following policies to making Crowe a great place to work: Innovation: Each year, Crowe invests about two percent of firm revenue in new product development funding to develop ideas brought forward by its people. Building upon a foundation of deep industry specialization, Crowe professionals follow a detailed innovation road map to create original, practical solutions that help address their clients' biggest challenges. This process allows them to see their ideas through from start to finish. Mobility strategy: Rolled out more than two years ago, this strategy defied the norm of the professional services industry. It allows Crowe personnel to work where they're most productive – whether that be the office, their home or elsewhere – and wear jeans while they're in the office. This policy continues to receive great reviews on annual internal employee engagement surveys. Benefits: The firm promotes healthy living through its internal well-being portal, which allows Crowe individuals to complete wellness activities – such as exercise challenges, healthy eating, doctor visits and mindful lifestyle changes – for gift cards and health insurance premium reductions. Additionally, on top of its healthcare and retirement programs, Crowe recently expanded its paid time off policies for military leave and all new parents. Community service: Recently acknowledged in the Fortune Best Workplaces for Giving Back list, the firm places a high priority on community service. In honor of the firm's 75th year, Crowe personnel are working toward a combined goal of 75,000 hours of volunteering, which they're well on their way to achieving. In addition, Crowe has policies in place to align its charitable contributions with the volunteer efforts of its people. EOE M/F/D/V Crowe Horwath Dallas TX

Cybersecurity Analyst

Hollyfrontier Corporation