CB&I is hiring: Sr Cybersecurity Analyst in Cochran's Crossing

Join to apply for the Sr Cybersecurity Analyst role at CB&I

Overview

The Sr Cybersecurity Analyst is responsible for monitoring and responding to security incidents, implementing robust security measures, and developing strategies to mitigate risks. The role helps ensure the integrity, confidentiality, and availability of CB&I’s information assets. This is an Individual Contributor role. The role reports to the Director of Cybersecurity and routinely interacts with Global IT, Project Management, Engineering, Legal, Risk Management, and Outsourced Cybersecurity vendors.

Responsibilities

• Assesses information risk and facilitates remediation of identified vulnerabilities with the CB&I network, systems and applications. Reports on findings and recommendations for corrective action.
• Performs vulnerability assessments as assigned utilizing IT security tools and methodologies.
• Performs assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program.
• Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios.
• Facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation & reports on findings.
• Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications.
• Assists in all IT audits, IT risk assessments and regulatory compliance.
• Serve as project manager/lead within IT security projects.
• Promote awareness of applicable regulatory standards, upstream risks and industry best practices across CB&I.
• Act as a Tier 3 escalation point for security incidents and investigations.
• Manage and optimize security tools and platforms across the enterprise.
• Create, review, and troubleshoot Palo Alto Next-Gen Firewall rulesets.
• Administer and monitor CrowdStrike EDR and Proofpoint Email Security solutions.
• Operate and fine-tune SIEM platforms, including alert use case creation and optimization.
• Leverage Microsoft Cloud Security Tools (Defender for Endpoint, Defender for Identity, Purview, etc.) to secure cloud environments.
• Lead the Vulnerability Management program, including scanning, prioritization, remediation coordination, and reporting.
• Collaborate with and delegate tasks to MSSPs, ensuring SLAs and quality standards are met.
• Develop and maintain security documentation, runbooks, and incident response procedures.
• Stay current with emerging threats, vulnerabilities, and regulatory requirements.

Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, or related field.
• Completion of a recognized cybersecurity training program (e.g., SANS, NIST NICE Framework-aligned bootcamps).
• Industry certifications such as:
  - CompTIA Security+,
  - CySA+,
  - Certified Ethical Hacker (CEH),
  - GIAC certifications (e.g., GSEC, GCIA, GCIH),
  - Microsoft SC-200, SC-300,
  - CISSP or CISM (for more senior candidates).
• 10 years of experience in Information Technology, 7+ years of hands-on experience in cybersecurity roles.
• Experience with a global company preferred.
• Strong experience with: Palo Alto Networks firewalls, CrowdStrike Falcon, Proofpoint Email Security, Microsoft Security Suite, SIEM platforms (e.g., Splunk, Sentinel, QRadar, Elastic/ELK).
• Proven experience interoperating with MSSPs, third-party security vendors, and/or clients.

Skills and Behaviors

• In addition to providing technical leadership, build and nurture strong partnerships across business, engineering, security, and operations teams, consistently upholding the organization’s vision, core values, and business principles.
• Strong assessment and analytical expertise to interpret outputs from monitoring and reporting tools to enable proactive identification of potential problem areas and implement targeted solutions to mitigate risks before they affect operations.
• Strong knowledge of networking concepts, including SDN, VPNs, TCP/IP, IP Sec, DNS, DHCP, BGP, LAN/WAN, routing, switching, and wireless networks.
• Understanding of network security principles and best practices, including firewalls, IDS/IPS, encryption, cloud infrastructure, and third-party integration.
• Strong knowledge of OSI and TCP/IP models, IP addressing, subnetting, VLSM, QoS, VXLAN, micro-segmentation, security zones, and redundancy.
• Understanding of cybersecurity frameworks and standards (NIST, ISO 27001) and encryption technologies.
• Experience with endpoint protection and cloud security principles.
• Hands-on experience with cybersecurity hardware/software configuration and scripting.
• Familiarity with Threat Intelligence Platforms, SOAR tools, Zero Trust Architecture, cloud platforms (Azure, AWS, GCP), OWASP, CVSS, and MITRE ATT&CK.
• Excellent organizational, project management, and communication skills; ability to communicate effectively with all levels, including executives.
• Collaborative and able to work with global peers across functions; willing to perform peer reviews of work products.
• Promotes the company’s values, culture, diversity and inclusion, and a safe work environment.

Location: The Woodlands, TX