Information Security Analyst II
US.GA.Remote, United States
CSG
CSG helps companies build effortless experiences, making it easier for customers to connect with, use and pay for the services they value most.
Hi, I'm Juhi Banerjee, your Recruiter and guide to joining CSG! We are excited to learn more about you and your unique background.
The Information Security Analyst II will support the implementation and administration of information security policies, practices, procedures, and technologies in order to ensure the protection of networks, systems, applications, and data. This role will be looked to as an information security professional within the organization, helping ensure compliance with all security policies and standards, as well as with industry regulations and laws. This role will also be involved with day-to-day security operations by responding to security events of interest and recommending corrective action by working with IT and non-IT team members.
We are looking for an Information Security Analyst II who will:
- Monitor, respond, and work to resolution alerts from security tools such as endpoint detection and response (EDR), email security, firewall, security event and information management (SIEM), IPS/IDS, Application Firewall, malware, change detection (FIM), user behavioral analytics, rogue wireless network alerts, and security system health monitoring.
- Participate in the organization's incident response plan and perform incident reporting on an as needed basis. Experience in incident response, to include evidence collection and preservation, timelining activities, and conducting technical interviews. Experience with automated workflow tools and Strong analytical and problem-solving skills; Python experience a plus.
- Collaborate with team members and assist in developing and implementing SOC IR strategies, along with refining and testing incident response playbooks and procedures. Coordinate with internal and external stakeholders during incidents. Stay updated on emerging cybersecurity threats and trends.
- Perform security engineering tasks as required to include alert tuning, system maintenance, determining and capturing key information feeds, etc.
- Participate and fulfill requests from audit, compliance, and regulatory functions, including and not limited to Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), emerging state and Federal privacy laws, and general security auditing
- Must be able to work outside normal business hours when needed in order to perform diagnosis and/or implementation of product releases or changes so that normal business workflow is not interrupted
- This position requires domestic and/or international travel of up to 5%
Is this opportunity right for you? We are looking for candidates with:
- Bachelor’s degree in computer science, Information Security, related field, or equivalent experience
- Proficiency in English in a business environment.
- Experience with various functions within the entire incident response life cycle including security system engineering, alert monitoring, triage, incident analysis (host and network forensics, malware analysis, etc.) and incident management
- Experience working with information security technologies, such as IDS/IPS, malware prevention, database activity monitoring, secure password repository, multi-factor authentication, SIEM, SPAM prevention, web content filtering, IdM/IAM, encryption and encryption key management, DLP, change detection, and vulnerability scanners
- Qualified and successful candidates will have at least 2-4 years of experience working extensively within security or highly technical IT fields
- Knowledge of TCP/IP: must be able to demonstrate technical understanding of all layers of the TCP/IP stack, including familiarity with major application-layer protocols such as HTTP, HTTPS, FTP, SFTP, FTPS, SMTP, DNS, etc.; must be able to read and understand a packet trace; must be able to read and interpret network access control lists
- A clear understanding of a variety of network and application attacks: examples include DoS/DDoS, buffer overflows, SQL injection, reconnaissance scanning, and evasive methods attackers use to avoid detection; must be able to demonstrate a minimum level of familiarity with well-known vulnerabilities and exploits
- Working knowledge with IT security, compliance, and regulatory requirements, such as Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), Health Insurance Portability and Accountability Act (HIPAA) , state and Federal privacy laws
Preferred
- One or more of the following certifications:
- Global Information Assurance Certification (GCIH, GCFA, GREM, etc)
- Offensive Security Certified Professional
- (ISC)2 SCCP
- (ISC)2 CISSP
Our Guiding Principles:
Impact
Always help and empower others, whether they’re colleagues or customers. When our employees set their minds to something, great things happen.
Integrity
Do what’s right for our customers and our people while being authentic. We treat everyone with trust and respect—that’s just who we are.
Inspiration
Be bold in the way you think and passionate about the work you do. Test out innovative ideas without the fear of failure.
CSGer Perks & Benefits:
- Work from Home, in-office, or hybrid.
- Employee Belonging Groups
- Healthcare: Dental, Medical, and Vision
- Paid Vacation, Volunteer, and Holiday Time Off
- And so much more!
If you would like to be considered for employment opportunities with CSG and need special assistance due to a disability or accommodation for a disability throughout any aspect of the application process, please call us at +1 (402) 431-7440 or email us at accommodations@csgi.com. CSG provides accommodations for persons with disabilities in employment, including during the hiring process and any interview and/or testing processes.
Our Story
CSG empowers companies to build unforgettable experiences, making it easier for people and businesses to connect with, use, and pay for the services they value most. For over 40 years, CSG's technologies and people have helped some of the world's most recognizable brands solve their toughest business challenges and evolve to meet the demands of today's digital economy.
By channeling the power of all, we make ordinary customer and employee experiences extraordinary. Our people [CSGers] are fearlessly committed and connected, high on integrity and low on ego, making us the easiest company to do business with and the best place to work. We power a culture of integrity, innovation, and impact across our locations, representing the most authentic version of ourselves to build a better future together. That's just who we are. Learn more about CSG Inclusion & Impact here.
Please submit your application at csgi.com/careers. Applications will be accepted for at least 5 days from original posting date.
Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.
Position Pay Range:
This range represents the low and high end of the salary range for this position. Actual salaries will vary based on factors including but not limited to geographical location and experience.
$68,356.34-$109,370.37This role is eligible for a bonus opportunity.
Location(s):
United States RemoteTags: Analytics Audits CISSP Compliance Computer Science DDoS DNS EDR Encryption Exploits Firewalls Forensics GCFA GCIH GREM HIPAA IAM IDS Incident response IPS Malware Monitoring Offensive security Privacy Python SIEM SMTP SOC SOX SQL SQL injection TCP/IP Vulnerabilities
Perks/benefits: Health care Home office stipend Insurance Salary bonus Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.