SECURITY ANALYST

The ideal candidate will have the experience necessary to work with our clients to oversee all security-related efforts including security program development, security risk management, vendor risk management and GRC efforts to ensure the firm meets information security regulatory standards and guidance by providing an advisory services role and acting as the focal point for security compliance related activities and responsibilities. Work with clients to deploy and maintain reliable, secure and efficient endpoint and network security controls. Perform security assessments on client environments and confident to make recommendations where applicable to ensure client environments maintain acceptable risk levels.
 
Responsibilities
  • Performing security assessments to include vulnerability assessments, compromise assessments, M365 assessments, Risk Assessments among others, while identifying and defending against threats
  • Work with Clients to determine industry specific requirements and provide guidance in the creation of Written Information Security Programs, to include written policies, BCP/DR plans and Incident Response Plans.
  • Consulting with staff, managers, and executives about the best security practices and providing technical advice
  • Configuring security systems, analyzing security requirements, and recommending improvements
  • Installing, administering, and troubleshooting network, endpoint and cloud security solutions
  • Updating software/firmware with the latest security patches and ensuring the proper defenses are present for each network resource
  • Manage and Mature SIEM solution utilized in client environments including data manipulation and alert creation
  • Creating network policies and authorization roles for defending against unauthorized access, modifications, and destruction
  • Configuring and supporting security tools, such as firewalls and network monitoring tools, SIEMs and end-point protection solutions
  • All other duties and projects as assigned
Required Skills
  • A strong understanding and knowledge of computer, network, and security solutions
  • Practice with presenting highly technical deliverables to non-technical C-Suite or similar audience showing value in security solutions
  • Familiarity with common Industry requirements and Security frameworks such as NIST 800-171, NIST CSF, ISO 27001, CIS top 18, HIPAA, GDPR, GLBA etc.
  • Excellent written and spoken communication skills
  • Strong analytical, critical thinking, and problem-solving skills
Preferred Experience/Skills
  • Experience with firewalls, VPN implementation, troubleshooting, and problem resolution is desired
  • Experience with SIEM solutions, deployment and monitoring preferred
  • CISSP, CISM, CISA, CRISC, CCISOor similar certifications preferred
Additional Professional Attributes
  • Detail-oriented and a zeal for accuracy
  • Professional appearance
  • Positive attitude
  • Friendly and extroverted personality
  • Excellent verbal and written communication skills
  • Passion to deliver a high level of customer service
  • Eagerness to participate in a highly collaborative and highly energized team environment
  • Must have reliable transportation and a valid driver’s license
  • Desire to write code and able to write scripts is a bonus

Benefits

  • Competitive salary
  • Medical benefits that include dental and vision plans
  • 401(k) with match
  • Tuition reimbursement program
  • Referral bonus program
  • Be part of a dynamic growing company that offers a meaningful and fun work environment