DescriptionThe
Information Security Analyst supports the company's security operations by monitoring, investigating, and responding to security events, while helping protect information assets from unauthorized access, disclosure, modification, or destruction. This role works with internal teams to identify risks, improve controls, and ensure security practices align with business needs and organizational policies.
Key Responsibilities: - Monitor security alerts, logs, and events from security tools and platforms to identify potential threats, anomalies, and trends.
- Investigate security incidents and document findings, recommending containment, remediation, and preventive actions.
- Analyze data to identify recurring issues, emerging risks, and opportunities to improve monitoring and response.
- Support the implementation of security policies, procedures, and standards, and help track compliance across the organization.
- Work with business users and technical teams to resolve security issues while balancing operational needs and security requirements.
- Assist with vulnerability management, system hardening, and security configuration reviews.
- Prepare reports, summaries, and metrics for management and security leadership.
- Participate in incident response activities, including after-hours support when needed.
- Maintain awareness of current threats, vulnerabilities, and security best practices through ongoing learning.
- Strong analytical and problem-solving skills.
- Ability to investigate technical issues and summarize findings clearly.
- Report writing and documentation skills.
- Ability to work independently and collaboratively across teams.
- Good communication skills with both technical and non-technical audiences.
Basic Qualifications:- Bachelor's degree or equivalent education in Information Systems, Cybersecurity, Computer Science, or related field.
- At least three to five years of experience in information security, IT security, systems, network administration, or a related field.
- Familiarity with security tools, log analysis, vulnerability management, and incident response.
- Knowledge of information security policies, frameworks, and compliance practices, including NIST Cybersecurity Framework concepts.
- Detail-oriented and dependable.
- Professional, collaborative, and responsive under pressure.
- Able to maintain confidentiality and handle sensitive information appropriately.
- Ability to work on call or after hours as needed.
Preferred Qualifications:- Experience with SIEM, endpoint security, email security, firewall, and network security tools.
- Familiarity with Windows and Linux systems administration.
- Experience supporting audits, compliance efforts, or control validation.
- Professional certifications such as Security+, SSCP, CEH, or equivalent.
This position requires candidates to have unrestricted work authorization in the United States without the need for visa sponsorship, either currently or in the future.
