Senior Information Security Analyst (Cyber Security Analyst)

Position Summary

The Senior Information Security Analyst (Cyber Security Analyst) supports day to day information security operations such as access control, security events analysis, vulnerability management, incident response and handling, documentation, audit support, and internal/external vendors security testing. Expertise in Microsoft Windows, virtual technologies, SIEM technologies, security testing, log management and incident response are key to the role. This role will be part of the Information Security team responsible for cyber security operations.

Essential Duties and Responsibilities include the following. To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Other duties may be assigned.

• Participate in access management activities including account provisioning, roles and permission assignment, deactivation and periodic reviews.
• Consultation with users to provide SME guidance on information security, incident analysis, and problem resolution.
• Perform security testing and analysis to identify security gaps and propose remediation steps
• Adhere to and improve upon company policies and procedures on incident management
• Operate, optimize and maintain information security tools
• Maintain current knowledge of information security trends, threats and responses
• Participate in all aspects of Information Security Operations including on-call duties.
• Knowledge and experience in vulnerability management, and security events analysis
• Familiarity with the following technologies: SIEM, Active Directory, Microsoft Windows, Linux, Juniper/Cisco firewalls, network protocols, IDS/IPS

Qualifications

Education

• Preferred: Bachelor, Other Education: Computer Science, Computer Engineering, Information Systems, Math or Business or technical equivalent.

Experience

• 5+ years' experience in an information security analyst/engineer role
• Experience with information security best practices and security frameworks.
• Technical security experiences are needed in this role.
• Must be able to demonstrate the ability to provide guidance on incident analysis, and technical problem resolution.