Information Security Analyst. The individual will detect, analyze, and limit security risks to the firm. They will also identify ways to enhance the firm’s security posture.

Responsibilities

⦁ Utilizes knowledge of SiEM solutions like Splunk, Rapid7 Insight IDR etc.
⦁ Develops and maintains documentation for security systems, procedures, and security diagrams.
⦁ Analyzes, proposes, and implements solutions concerning residual risk, vulnerabilities, and other security exposures.
⦁ Installs security measures and operates software to protect systems and information infrastructure, including firewalls and data encryption programs.
⦁ Assists with conducting periodic desktop exercises and drills for employees to ensure that systems have been properly configured and tested.
⦁ Assists with security awareness initiatives in the form of emails, newsletters, training, and anti-phishing awareness campaigns.
⦁ Work Closely with IT staff to secure hardware, peripherals, and other equipment. Ensures quality controls of new computer images periodically to verify all security standards are being met and applied.
⦁ Assists with large scale or long-term projects for the design, development, implementation, and testing of new or existing information security systems.
⦁ Researches and evaluates security enhancements and makes recommendations to management to maintain efficiency and best practices.

Knowledge, Skills, and Abilities

⦁ Bachelor’s degree in Computer Science or Cybersecurity required
⦁ Minimum 3 years of Information Technology experience with at least one year of information security related experience
⦁ Strong knowledge of application and infrastructure security solutions (Firewalls, Intrusion Detection/Prevention Systems, Network Security, Password Management, Data Encryption and Access Control), project management
⦁ Relevant work experience with incident detection, incident response, and forensics is a plus
⦁ Experience and familiarity with the ITIL framework and processes preferred
⦁ Familiarity with cloud-based applications and how to properly secure them including but not limited to Azure, O365, NetDocuments, etc.
⦁ Proficient with Linux operating system.