Security Analyst

Description

The Security Analyst role is critical for ensuring the organization's information security tools, technologies, and processes are configured, supported, and monitored effectively. The successful candidate will be responsible for implementing and maintaining established security practices with a high degree of attention to detail, as these activities significantly impact compliance and risk management. This role requires collaboration across multiple security domains and offers the opportunity to contribute to the organization’s overall security posture.

We are looking for a team player who thrives in a collaborative environment and aligns with our commitment to fostering a positive and inclusive workplace culture. Ideal candidates will demonstrate:

• A proactive and curious mindset, with a passion for staying up-to-date on the latest security trends and technologies.
• Strong ethical principles and integrity in handling sensitive information.
• A focus on continuous learning and professional development.
• The ability to build strong relationships with team members and stakeholders across the organization.

Responsibilities

• Risk Management: Demonstrate a strong understanding of risk management activities, with a focus on security awareness, training, and education.
• Asset Security: Document and maintain the classification and ownership of information and assets, ensuring a high level of accuracy and compliance.
• Security Models and Conversations: Understand security model concepts, actively participate in security discussions, and implement changes designed by security architects.
• Monitoring and Alerts: Monitor alerts related to communication and network technologies, escalating and reporting suspicious activity as necessary.
• Security Assessments and Testing: Schedule and monitor security assessment and testing technologies under the guidance of Security Engineers and Architects.
• Security Operations: Participate in a range of security operations activities to maintain organizational security.
• Incident Response: Document and support incident response activities, contributing to incident management goals.
• Logging and Monitoring: Establish, configure, and support multiple logging and monitoring activities to ensure robust system oversight.
• Disaster Recovery: Actively participate in disaster recovery testing and planning to ensure business continuity.
• Tool Configuration and Management: Manage security configurations for tools and services, including Endpoint Security, Identity Management, Cloud Security, Vulnerability Management, Networking, Data Protection, and Security Awareness.
• Application Security: Configure and schedule scans of application security testing tools, review reports, assign remediation 

Requirements

• Strong foundational knowledge of information security principles and best practices.
• Demonstrated experience in risk management, asset security, and incident response.
• Familiarity with security assessment tools, monitoring solutions, and disaster recovery processes.
• Hands-on experience with security tools and technologies, including Endpoint Security, Identity Management, and Cloud Security.
• Excellent analytical and problem-solving skills with the ability to identify, assess, and resolve security issues.
• Effective communication skills to collaborate with cross-functional teams and report findings clearly.
• Relevant certifications (e.g., CISSP, CISM, CEH) are a plus.