Job Description

Carpenter Technology Corporation (NYSE: CRS) is a recognized leader in high-performance specialty alloy-based materials and process solutions for critical applications in the aerospace, defense, transportation, energy, industrial, medical, and consumer electronics markets. Founded in 1889, Carpenter has evolved to become a pioneer in premium specialty alloys, including titanium, nickel, and cobalt, as well as alloys specifically engineered for additive manufacturing (AM) processes and soft magnetics applications. Carpenter recently expanded its AM capabilities to provide a complete "powder-to-part" solution to accelerate materials innovation, offer rapid prototyping, and streamline parts production. TITLE OF POSITION: Cybersecurity Analyst--Level II OVERVIEW: Cybersecurity analyst will collaborate with IT and Security teams to keep cybersecurity infrastructure in an optimal ready state while assisting with cybersecurity technology projects and lifecycle management. LOCATION: Reading, PA, Latrobe, PA or Athens, AL PRIMARY DUTIES: * Administer security infrastructure including intrusion detection, data loss prevention, anti-virus, network and web application firewalls, VPN, web access filters, and encryption * Create/update standard operating procedures and as-built documentation * Routinely publish performance metrics * Evaluate key threat intelligence feeds, assesses risk, and recommends actions for cybersecurity operations improvements * Perform daily cybersecurity operations duties including handling service requests from Business and IT teams. * Provide basic security awareness training (e.g. Phishing Email simulations) and security policy consultation (e.g., password requirements) * Contribute as needed with Identity and Access Management (IAM) duties including user account provisioning, password vaulting, periodic access review, and encryption key management * Test effectiveness of security controls independently as well as collaboratively with Internal Audit * Identify opportunities for improvement and make constructive suggestions for change * Perform research and communicates findings to technical and non-technical audiences * Assist with efforts to improve control design, operational effectiveness, and service delivery quality * Lower the likelihood of harm from cyber-attack and compliance failure * Research and guide IT with various security topics * Assist IT team in understanding and solving cybersecurity issues and events REQUIREMENTS: * Associates degree in computer science or related field or a combination of business-related functional experience, education, or related certifications (e.g., CompTIA Security+) * 2+ years' related experience with Access Management, Security Operations, Network Security, and//or Vulnerability Management * Broad understanding of Information Technology * Advanced knowledge of multiple security domains and common security controls * Familiarity with common hacking techniques (e.g., malware, phishing, etc.) and effective counter measures * Adoption of security best practices and industry standards (e.g. NIST, ISO, CIS, COBIT, OWASP, etc.) * Hands-on operation of cybersecurity infrastructure (e.g., Firewalls, Intrusion Detection, AV, PKI, Encryption, etc.) and configuration experience * Security Incident Handling and First Responder (SOC Analyst) * Strong verbal and written communication skills with the ability to listen intently PREFERRED: * Ability to multi-task and manage demands of multiple projects, incidents, and tasks * Ability to manage changing priorities and meet applicable deadlines * Ability to perform effectively both independently and in a team environment * Strong collaboration skills with a teamwork orientation * Ability to manage stressful situations associated with cyber-attack * Ability to influence fellow technical staff regarding security, compliance, and risk Carpenter Technology Company offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, flexible spending accounts, disability coverage, 401k with company contributions as well as many other options to employees. Carpenter Technology Corporation's policy is to fully and effectively maintain a program of equal employment opportunity and nondiscrimination for all employees, to employ affirmative action for all protected classes, and to recruit and develop the best qualified persons available regardless of age, race, color, religion, sex, gender identity, sexual orientation, marital status, national origin, political affiliation or any other characteristic protected by law. The Company also will recruit, develop and provide opportunities for qualified persons with disabilities and protected veterans.