Las Vegas Sands Corp. | Hiring | Principal Analyst – Cyber Security | Las Vegas, NV | | 5 Oct 2022

Before u proceed below to check the jobs/CVs, please select your favorite job categories, whose top job alerts you want in your email & Subscribe to our Email Job Alert Service For FREE


Job Location: Las Vegas, NV

Position Overview
The primary responsibility of the Principal Analyst – Cyber Security, reporting to the Las Vegas Sands Corporation (LVSC) Director of Advanced Analytics (A2), is to examine global cyber events, dark web news, information platforms, and perform your own research to answer requests for information, identify attack methodologies, and identify threat actors’ interests and motivations. You will “connect the dots” to provide relevant and timely information to the cybersecurity team and company decision makers. Additionally, you will participate in internal events, incidents, and investigations, performing advanced analysis in search of threat actors. The Principal Analyst will have deep experience with and be able to use publicly available threat data from reputable sources to recognize relationships between individuals, businesses, and other entities. The successful candidate will possess strong ethics, working knowledge of legalities and industry standards surrounding open-source information collection. This individual will focus on collections aligned to established requirements, enrichment, and analysis of phishing, malware, and exploitable vulnerabilities. The position will focus on threat landscape development, threat analysis, and developing and growing operational information projects and programs. The Advanced Analytics Team is responsible for distilling the ocean of available cyber threat information into concentrated and tailored products to build the highest level of threat understanding for LVSC’s cyber defense team. By providing awareness, indications, warnings and operational readiness, the Team protects the LVSC brand, global business operations, technology infrastructure, and client trust against cyber threats worldwide.
All duties are to be performed in accordance with departmental and Las Vegas Sands Corp.’s policies, practices, and procedures. All Las Vegas Sands Corp. Team Members are expected to always conduct and carry themselves in a professional manner. Team Members are required to observe the Company’s standards, work requirements and rules of conduct.
Essential Duties & Responsibilities
  • Prioritize information requirements (IR) and requests for information (RFI), including developing targeting and collection plans.
  • Analyze cyber threats; engage stakeholders to determine impact to LVSC.
  • Monitor a wide array of diverse information sources, ranging from open source to classified materials for potential threats.
  • Maintain a detailed level of awareness of threats to the retail and hospitality sectors and the supply chain.
  • Actively participate in the development, documentation, and implementation of new processes to expand and mature capabilities for the organization.
  • Provide advanced communications services, writing, editing, analysis, and planning.
  • Partner with Cyber Security Operations, Engineering, Risk, and Verification team members to react to current events/incidents, thwart anticipated attacks, and prepare for future threats.
  • Lead project planning for complex communications projects and other significant threat analysis initiatives.
  • Gather, manage, understand, and deliver on stakeholder requirements.
  • Independently interface at various levels within the organization, including executive leadership, senior stakeholders, business line leaders, and technical subject-matter experts.
  • Mentor less experienced staff, frequently instructing and occasionally directing the work of others.
  • Lead discussions on threat information relevant to LVSC.
  • Lead design and implementation of communication solutions through research, evaluation, and feedback to enhance information customer communication.
  • Create and deliver cyber threat information work products, including briefs, situational awareness reports (SITREPs), and alerts.
  • Review, analyze, edit, and enhance existing cyber threat information business and technical documentation, and other communications media for effectiveness, clarity, and accuracy.
  • Research and apply relevant quality standards, regulatory standards, and industry best practices to ensure the highest level of quality in deliverables.
  • Design informative briefs, prepare presentations and/or supporting documentation to promote awareness of cyber security related initiatives.
  • Review and analyze open-source datasets to build actionable and high-fidelity information to LVSC.
Minimum Qualifications
  • At least 21 years of age
  • BA/BS degree in IT, Computer Science, (cyber) defense, or similar
  • A minimum of eight (8) years or more cybersecurity/data analytics experience; OR a relevant Masters and seven (7) years or more cybersecurity/ data analytics experience; OR a relevant PhD and six (6) years or more cybersecurity/ data analytics experience.
  • Candidates without a specified degree or the full requisite experience are encouraged to apply and will be assessed on a case by case basis related to their work experience and accomplishments.
  • Experience working with vulnerabilities: ability to triage POC, knowledge of databases (examples: NVD, CVE, MITRE, and VULdb) and exploitation techniques
  • Cloud vulnerability experience
  • Understanding of the following concepts: Cyber Kill Chain, Advanced Persistent Threat, Third Party Risks, Cybercrime, Hacktivism, Various Cyber Attack Types, Fraud, Malware and Ransomware, Mobile Threats, Social Engineering, Insider Threats, SOC function, Incident management, Networks and Encryption.
  • Working knowledge of advanced cyber threats, threat vectors, attacker methodology to include, tools, tactics, and procedures and how they tie into Cyber Kill Chain, ATT&CK framework, Diamond Model, etc.
  • Experience disseminating information to the sector through the appropriate mechanisms in accordance with TLP classification and handling protocols.
  • Developing or learning tools to enhance functional capabilities.
  • Experience with Microsoft Power BI or other information visualization tools.
  • Prior experience as a technical communicator with a focus on cyber security.
  • Prior experience in relationship and stakeholder management at a senior level.
  • Certification(s) demonstrating cybersecurity knowledge (OSCP, CISSP, GPEN, CEH, Microsoft security engineer certifications, AWS Certified Security – Specialty)
Physical Requirements
Must be able to:
  • Physically access assigned workspace areas with or without reasonable accommodation.
  • Work remotely or in office as necessary
  • Work indoors and be exposed to various environmental factors such as, but not limited to, CRT, noise, and dust.
  • Utilize laptop and standard keyboard to perform essential functions of the job.

Apply Here

Submit CV To All Data Science Job Consultants Across United States For Free


Please enter your comment!
Please enter your name here