Siemens CSCO Cyber Security Analyst in Milford, Ohio

CSCO Cyber Security Analyst

Locations:Milford, Ohio

Job Family: Information Technology


Job Description

Division: Global Services

Business Unit: Information Technology

Requisition Number: 201193

Assignment Category: Full-time regular

Experience Level: Mid level

Education Required Level: High School Diploma / (GED)

Travel Required: 5%

Division Description:

Siemens is a global technology powerhouse that has stood for engineering excellence, innovation, quality, reliability and internationally for more than 165 years. As a global technology company, Siemens is rigorously leveraging the advantages that this setup provides. To tap business opportunities in both new and established markets, the Company is organized in nine Divisions: Power and Gas, Wind Power and Renewables, Energy Management, Building Technologies, Mobility, Digital Factory, Process Industries and Drives, Healthineers and Financial Services.

Our support functions are split into two organizations, Corporate Core and Corporate Services. These organizations provide essential services to better enable responsible and profitable growth.

For more information, please visit:

Job Description:

The Cyber Security Analyst will be part of the CSOC (Cyber Security Operations Center) for the Americas, which is tasked with the primary mission to detect, analyze, investigate, and defend against sophisticated digital attacks. In this position, the Cyber Security Analyst will report to the Head of the Cyber Defense Center for the Americas and be part of the Threat Detection and Analysis team. The Cyber Security Analyst will work alongside peers and actively contribute to alert triage, investigations, and provide input to different approaches to threat detection and response.


The analyst will be expected to contribute to the following activities:

• Interface/engage with external customers on a range of topics to include: alerts, system configurations, incident response, calibration of detection tools and similar activities

• Serve as a technical resource during pre-sales, ramp up, deployment and operations for the CSOC business leadership

• Correlate actionable security events from various log sources which either feed or supplement the Security Information and Event Management (SIEM) solution

• Review threat data from various sources, and develop custom signatures for open source Intrusion Detection Systems (IDS) or other custom detection capabilities

• Perform network traffic analysis

• Employ advanced forensic tools

• Utilize understanding of attack signatures, tactics, techniques and procedures associated with advanced threats

• May conduct malware analysis of attacker tools providing indicators for enterprise defensive measures, and reverse engineer attacker encoding protocols

• Interface with remote team members located across the globe

Required Knowledge/Skills, Education, and Experience:

• Bachelor’s degree in a Computer Science/Engineering or Information Technology related field

• 5 to 8 years of successful work experience in IT technologies including networking, operating systems, or a related field

• Knowledge of networking protocols (such as TCP, UDP, DNS, FTP, SMTP, DHCP, etc.)

• Experience with Windows operating system functionality (file system structure, registry keys, scheduled tasks, processes, services, memory management, data storage, etc.)

• Capable of learning new concepts and processes quickly, and adapting to a constantly changing environment

• Ability to apply skill set to resolve complex problems

• Excellent analytical and critical thinking skills

• Excellent interpersonal and communication skills (verbal & written)

• Team player

• Required Travel: <10%

Preferred Knowledge/Skills, Education, and Experience:

• Working knowledge of ICS (Industrial Control Systems) systems, protocols, etc.

• Experience managing an investigation; understanding the methodologies for investigative triage, case/investigation definition, etc.

• Application of common Cyber Security concepts including Intrusion Detection Systems, Host Intrusion Prevention Systems, and Anti-Virus Solutions

• Understanding of the Windows File System structure, and ability to recover deleted files, search hidden files, and access registry keys

• Knowledge of Operational Security (OpSec) principles for cyber operations with an emerging understanding of the relationships between the cyber domain disciplines

• Ability and experience capturing and analyzing volatile (in-memory) data

• Experience with network signature development with tools such as SNORT, NetFLOW, WireShark, tcpdump or related tools

• Experience with central log collection, indexes, searching and analysis

• Ability to interpret logs in the context of security events/intrusions and make accurate conclusions


Equal Employment Opportunity Statement

Siemens is an Equal Opportunity and Affirmative Action Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to their race, color, creed, religion, national origin, citizenship status, ancestry, sex, age, physical or mental disability, marital status, family responsibilities, pregnancy, genetic information, sexual orientation, gender expression, gender identity, transgender, sex stereotyping, protected veteran or military status, and other categories protected by federal, state or local law.

EEO is the Law

Applicants and employees are protected under Federal law from discrimination. To learn more, Click here at .

Pay Transparency Non-Discrimination Provision

Siemens follows Executive Order 11246, including the Pay Transparency Nondiscrimination Provision. To learn more, Click here at .