Sr Analyst Cyber Security

Overview

Who We Are At Academy Sports + Outdoors, our vision is to be the best sports + outdoors retailer in the country — and what truly sets us apart is our people. We’re a passionate, purpose-driven team that’s as committed to each other as we are to our customers. We’ve spent over 80 years building a culture that puts people first.

We believe in creating opportunities for growth, fostering meaningful connections, and supporting every Team Member’s journey. What fuels us? Our belief in the power of fun. Here, you won’t just help customers gear up for their next adventure — you’ll launch one of your own. Whether you’re starting out or leveling up, Academy is a place where fun can’t lose!

• Bachelor’s degree in Information Technology or relevant field of required
• Preferred: industry certifications in areas such as AWS, Certified Cloud Architect (CCA), Certificate of Cloud Security Knowledge (CCSK), and/or CISSP, CEH, CCNA and CompTIA Cloud+

• 5+ years of experience in information security in an enterprise environment
• Expert knowledge of Windows, Mac, Linux/Unix, and iSeries (AS400) operating systems
• Experience in conducting security assessments and analysis of applications and operating systems
• Experience in providing cyber threat analysis to support and development teams
• Deep understanding of analyzing and prioritizing application security, risk assessment, validation of security pen test results, and vulnerability resolution
• Experience with application support and system troubleshooting preferred
• Experience in collaborating with various levels of IT and management
• Expert knowledge of database, networking, virtualization, and server hardware concepts
• Master skills of endpoint security, threat management, and cyber security incident and response
• Working experience on different types of Single-Sign-On (SSO), password reset, self-service, federated identity, multi-factor authentication (MFA), and IAM products and services, including Identity as a Service (IDaaS)
• Experience with offshore teams preferred

• Demonstrated expert level experience with endpoint protection and vulnerability management tools, malware prevention tools and antivirus solutions
• Demonstrated experience in configuration and management of security controls for Cloud Environments (IaaS, PaaS, SaaS)
• Understanding of network protocols and network traffic analysis, firewalls, intrusion prevention systems, proxies, PKI and HSMs
• Expert ability to analyze security systems logs, security tools and data
• Ability to work with different teams on concurrent projects
• Ability to document project requirements, define KPIs and produce reports showing project progress
• Ability to communicate technical information to a non-technical audience
• Strong interpersonal, written, and verbal communication skills to interface at various levels
• Working knowledge of Windows Server 2003/2008/2012/2016, Unix, Mac, and Windows 10
• Ability to stay organized, pay attention to detail, and meet deadlines
• Analytical with strong problem-solving abilities and creative resolution skills
• Ability to work well under pressure while meeting time-sensitive deadlines

• Support enterprise-wide vulnerability management program and remediation efforts
• Perform advanced threat analysis and modeling to ensure controls provide needed enterprise coverage
• Implement and manage security controls to protect the enterprise
• Complete and close assigned IT tickets for vulnerability remediation and end point protection
• Serve as IT Security SME for business and IT projects and initiatives
• Support cloud initiatives by providing security recommendations and implementing controls to protect IT assets in the public cloud
• Perform application security reviews for web and mobile applications
• Participate as a key resource in CSIRT activities and investigations
• Collaborate with the IT security & Compliance Team to deliver holistic solutions
• Present solutions to various levels of management

• Acceptable level of hearing and vision to perform job duties
• Adhere to company work hours, policies, procedures, and rules governing professional staff behavior
• Regular in-office attendance is required

Full time

Academy is an Equal Opportunity Employer and does not discriminate with regard to employment opportunities or practices on the basis of race, religion, national origin, sex, age, disability, gender identity, sexual orientation, or any other category protected by law.