Kansas Works Jobs

Kansas Works Logo

Job Information

Garmin Cyber Security Analyst 3 in Olathe, Kansas

Cybersecurity is a fast-paced ever-changing field that results in a very unique, dynamic work environment. The Garmin Cyber Team has multiple Security Operations positions that provide a global 24x7 security presence. SOC analysts are on the front lines against cyber threat actors and are focused on NIST aligned core functions of Identify, Protect, Detect, Respond, and Recover. At Garmin, Cyber teams are comprised of associates who share the same passion about what they do every day. We offer a relaxed team environment (no dress code!) where advancement is found from sharing knowledge, not hiding it! While we promise you a lot of responsibility, you also will have the opportunity to have ownership over projects…oh, and we promise you there will be some fun mixed in there, too!

We are looking for a full-time Cyber Security Analyst 3 for our headquarters in the greater Kansas City area. In this role, you will perform security monitoring, conduct investigations, and develop solutions to remediate current, and prevent future internal/external cyber threats to the environment. You will work in a fast-paced environment to identify and detect incident response actions, provide recommendations based on data for enterprise standards, policies, and regulations, and serve as a mentor to less experienced Cyber Security Analysts. A passion for learning, critical thinking, and an attitude for growth are essential for the success of this position. Other essential functions include:

  • Develop analytical paths (playbooks) based on trend analysis to triage and remediate security events to improve/prevent incident response actions while minimizing business impact.

  • Provide detailed incident reporting for internal/external cyber investigations to support business functions.

  • Coordinate efforts with Security Engineering Team and Risk Management Team to establish reporting baselines and track compliance of enterprise standards, policies, and regulations.

  • In depth expertise with analyzing security events - network traffic, endpoint indicators, and various log sources to identify threats, assess potential damage, and perform countermeasures while managing established risk appetite.

  • In depth expertise with conducting research on the latest threats and technological advancements in combating adversarial tactics and make recommendations on potential solutions.

  • Proactively monitor security environment to detect trends and perform threat hunting operations to minimize mean time to detect (MTTD) and mean time to respond (MTTR) scores.

  • Demonstrated proficiency with performing detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities.

  • Demonstrated proficiency with correlating incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation.

  • Coordinate efforts with internal security and IT teams to implement remediation plans in response to security events.

  • Participate in 24x7 on call rotation Job Requirements.

  • Applies Garmin’s Mission Statement and Quality Policy and exhibits enthusiasm for and a desire to see Garmin succeed.

  • Demonstrates proficient use and knowledge of standards and procedures.

  • Reviews and validates security compliance reports to track business as usual and out of policy activities.

  • Communicates in written and verbal form effectively in a large team or departmental setting.

  • Performs audits on ticket management system and perform trend analysis to identify repeated issues and recommend solutions based on data analysis.

  • Serves as mentor to level 1 and 2 team members on the SOC, IT Operations, and Service Desk.

  • Demonstrates proficient use and knowledge of standards and procedures.

  • Communicates in written and verbal form effectively in a large team or departmental setting.

  • Applies Garmin’s Mission Statement and Quality Policy and exhibits enthusiasm for and a desire to see Garmin succeed.

Qualified candidates possess a Bachelor of Science Degree in Computer Science, Information Technology, Management Information Systems, or another relevant field AND a minimum of 5 years relevant IT Security experience OR equivalent combination of education and experience. Other requirements include:

  • Possess analytical skills and strong ability to maintain composure and remain diplomatic under highly stressful situations\t

  • Familiarity with MITRE ATT&CK Framework and Cyber Kill Chain methodology.

  • Strong multitasking skills to be able to effectively manage multiple activities, including cross-team dependent activities simultaneously.

  • Demonstrated effective verbal, written, and interpersonal communication skills.

  • Consistently demonstrates quality and effectiveness in work documentation and organization.

  • Demonstrated ability to exercise strong and effective verbal, written, and interpersonal communication skills in a small team setting.

  • Must be team-oriented, possess a positive attitude and work well with others.

  • Experience with system hardening techniques and methodologies.

  • Familiarity with TCP/IP networking, web infrastructure applications, tools and processes used in security incident detection and response.

Desirable Qualifications:

  • Information security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration

  • Working experience and knowledge of security related technologies such as intrusion prevention and detection systems, web proxies, SIEM, SOAR, EDR, firewalls, web application scanner, vulnerability scanners and forensics tools

  • Ability to work in a fast paced, dynamic environment

  • Security + certification

  • Other security certifications (GCIH, GCED, CISSP)

  • Experience with cyber security policies and implementation of Risk Management Framework (RMF)

  • Experience with NIST 800-53 and/or NIST Cyber Security Framework (CSF)

  • Experience in Security Orchestration, Automation, and Response (SOAR) and Security information and event management (SIEM) Platforms

  • Experience with log management platforms (Splunk, Elastic search/Logstash/Kibana - ELK / Elastic Stack)

  • System administration experience: Windows and Linux/Unix Scripting OR development experience (Python, JavaScript, PowerShell, C#, Perl)

Garmin International is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, veteran’s status, age or disability.