Security Analyst

Job Specification –Security Analyst

The Information Security department of Spencer Stuart, a leading international leadership advisory firm specializing in senior-level executive search, is seeking a Security Intern to join our team. This person must be detail oriented, responsive and willing to learn. The successful candidate will be comfortable working in a fast-paced, multi-priority environment driving security best practices and technologies to support the protection of confidentiality, integrity and availability of key firm assets. 

Principal Responsibilities

• Analyse, review and respond to security alerts including triaging and advising on mitigation activities
• Provide ticketing and engineering support for security technologies such as: malware detection, network access controls, web/email content filtering, SIEM response, intrusion detection and vulnerability management platforms.
• Review vulnerability scan data and work with system owners to create and track plans to address discovered vulnerabilities.
• Participate in the rotating vulnerability management and patching scheduleAssist in the deployment of information security project deliverables and technology platforms.
• Partner with the Service Delivery team to support the resolution of issues associated with security technologies and security incidents.
• Collaborate with system owners to remediate security misconfigurations or otherwise vulnerable platforms.
• Assist with security, vulnerability and risk reviews of systems, applications, and source code through the use of various automated tools and manual testing procedures.

Requirements

• Associates degree (with a specialization in cyber security, systems administration or engineering) or an equivalent combination of training and work experience.
• 2 to 3 years of experience in IT Security
• The successful candidate will be a self-starter, possess the willingness and capacity to learn quickly and apply new knowledge.
• Entry-level understanding of security concepts, cloud computing, systems and network architectures.
• Familiarity with coding and / or scripting would be a plus.
• Good analytical and communication skills.   

Key Technologies

Splunk, CrowdStrike, Cyberark, Darktrace, Cisco Umbrella, Bromium, Linux, Windows, AWS, Azure

Key Working Relationships

• Information Security Team
• Service Delivery Team
• Enterprise Architecture Team
• Development Team
• External Contractors