Sr Information Security Analyst

The Information Security Analyst serves on the Security Operations Team, employing knowledge and experience to help develop strategy, standards, and processes and to utilize technology to discover, remediate, and recover from security incidents. Utilize on-premises and Cloud technologies such as the Endpoint Protection, Vulnerability Management, Security Information and Event Management (SIEM), Intrusion Detection and Prevention System (IDPS), Data Loss Prevention (DLP), measure and content filtering, provide access control management for all staff, and other tools to support and maintain overall security operations. Compiles metrics to demonstrate the effectiveness of the security tools and processes.

ESSENTIAL JOB FUNCTIONS:

Operational Processes

• Assist in design and management of security technology processes, procedures, and solutions, which include Endpoint Protection, Vulnerability Management, Content Filtering, SIEM, and IDPS.
• Strong experience with CrowdStrike Falcon Platform
• Monitor viruses, malware, and intrusions.
• Conduct incident prevention, detection, containment, eradication and recovery across IT systems, including developing processes, monitoring events, responding to incidents, summarizing, and reporting of findings.
• Conduct advanced log analysis; monitor and respond to escalated security incidents.
• Assist for onboarding, transfer, and separation of new employees
• Maintain documentation of security standards, procedures, processes, and guidelines, including security breach resolution procedures.

Projects

• Understand and provide recommendations for security policies and standards and how they align to the business.
• Understand the different regulatory compliance standards and can communicate how they are applicable.
• Ability to communicate the NIST 800-53 controls to business and IT.
• Assist with path to SOC 2 Type 2 certification.

Customer Service

• Provide direct support to business and IT staff for security related issues, which may include issues with security tools.
• Provide after hours on-call support as required.
• Responsible for end user training and education regarding security procedures and policies for incident mediation.

KNOWLEDGE OF JOB

• Experience in understanding and implementing NIST controls.
• Experience with host and network security technologies such as firewalls, proxies, and operating systems.
• Experience with Windows Active Directory.
• Knowledge of application and network security.
• Experience communicating conceptual and technical information.
• Experience translating technical data into business impact information.
• Ability to manage timelines and meet tight deadlines.
• Detail oriented with excellent oral and written communication skills.
• Manage and prioritize multiple tasks.
• Excellent interpersonal skills needed to work with various levels of technical and managerial staff members.
• Self-motivated, constructive and positive attitude.
• Strong analytical and problem-solving skills.
• Ability to present data in a consistent and clear manner.