Senior Information Security Analyst

Position Summary:

The Senior Information Security Analyst position investigates security alerts, manages, and improves the cyber security toolset, detection, prevention, and response capabilities. The analyst will engage in many facets of the information security program while providing guidance and functioning as an experience resource to junior analysts.

Day to day responsibilities:

• Protects the confidentiality, integrity and availability of critical data, systems, and services

• Categorizes risks and threats by identifying abnormalities and reporting violations

• Create and tune detection rules

• Ensures operation excellence of all security tools and controls managed by the security operations team. 

• Determines security violations and inefficiencies by conducting periodic audits

• Monitors, investigates, and responds to security alerts

• Maintains information security documentation and standard operating procedures

• Maintains technical knowledge by attending educational workshops, achieving certifications, and subscribing to relevant publication

• Assists in various security projects

• Reviews and performs daily routine security system health checks and corrects deficiencies

• Provides documentation and evidence to respond to audits during assessments and audits

• Answers security related helpdesk requests and approvals

• Provides on-call support as needed

• Contributes to team objectives

• Performs other duties as assigned

What you'll need to have to be successful in this role:

• Bachelor’s degree in Information Security, Information Systems, Computer Science, or equivalent work experience

• 4+ years of relevant experience information technology or security experience

• One or more information security certifications

• Experience with SOC I, SOX, GLBA, and FFIEC regulatory compliance

• Experience utilizing EDR for Incident Response, creating detection rules, excluding false positives

• Experience creating detection rules, including requirements gathering, tuning, and defining response actions

• Experience managing email security controls (anti-spam, anti-spoofing, DMARC, etc.)

• Strong understanding of core security concepts: Encryption, IAM, Firewalls/Network Security, Incident Response, Security Awareness, DLP, Risk Management, and Least Privilege

• Basic understanding of the MITRE ATT&CK framework and the Incident Response Lifecycle

Must have these skills & abilities for the position:

• Ability to function with moderate supervision

• Strong interpersonal skills

• Quality written and oral communication, and presentation skills

• Critical thinking and problem-solving skills

• Attention to detail

• Ability to prioritize work based on deadlines and the impact on the organization.

• Commitment to operational excellence and continuous process improvement

• Willingness to expand and apply security knowledge, skills, and abilities to department initiatives

• Log analysis

Work Environment

The work environment characteristics described here may be encountered while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Moderate noise (i.e., business office with computers, phone, and printers, light traffic)

• Ability to work in a confined area

• Ability to sit at a computer terminal for an extended period. Occasional stooping or kneeling may be necessary

• While performing the duties of this job, the employee is regularly required to stand, sit, talk, hear and use hands and fingers to operate a computer keyboard and telephone

• Specific vision abilities are required by this job due to computer work

• Light to moderate lifting is required

• Occasional travel is required

#LI-BA1