Description
We're seeking a dedicated Information Security Analyst to join our team. In this hands-on role, you'll play a crucial part in safeguarding our data across both on-premises and cloud-based applications. If you're passionate about security, have a strong technical background, and enjoy tackling technical challenges from start to finish, we'd love to hear from you.
Key Responsibilities
- Implement security controls using the Center for Internet Security (CIS) Controls framework.
- Develop and manage security measures to prevent breaches and manage risk.
- Conduct regular system audits to ensure adherence to security standards.
- Utilize AI in data security and protection strategies.
- Collaborate with IT teams to integrate security practices into the development lifecycle.
- Provide training and guidance on cybersecurity best practices.
- Stay updated with the latest cybersecurity trends and technologies.
- Assist in updating and reviewing the System Security Plan (SSP).
- Create and implement security controls such as firewalls, encryption, and vulnerability scanning.
- Assess and address security events and vulnerabilities before they escalate.
- Identify security gaps and propose enhancements to security controls.
- Engage in cybersecurity projects to ensure timely delivery and alignment with information protection requirements.
- Collaborate with Managed Security Services Providers.
- Oversee vulnerability management and handle patch management for servers and endpoints.
- Participate in an on-call rotation for emergency events, including outages and cyber incidents.
Qualifications
- Education: Bachelor's degree in Information Technology, Compliance, Information Management, Infrastructure, or Information Security.
- Experience: 5 to 7 years of relevant work experience.
- Technical Skills:
- Proficiency with Rapid7 and NextGen AV systems.
- Hands-on experience with AI models and information security frameworks (e.g., CIS Framework, NIST).
- Working knowledge of network technologies (switches, routers, firewalls, VPN) and security tools (DLP, antivirus, SIEM, etc.).
- Experience with cloud security (AWS, Google Cloud Platform, or Azure) and identity access management systems (IAM).
- Familiarity with HIPAA and FDA regulated environments is preferred.
- Skills:
- Strong analytical skills in Cybersecurity and Information Systems.
- Ability to propose and implement solutions to close vulnerabilities.
- Experience with SIEM, configuration management, and vulnerability scanning.
What We Offer
- A dynamic work environment with a mix of onsite and remote flexibility.
- Opportunities for professional growth and development.
- A collaborative team culture focused on innovation and security excellence.
Employment Type: Full-Time