Information Security Analyst IV

Value Proposition:Good opportunity to get wide rang of security experience ranging from EDR, SIEM, SOAR, and Vulnerability Management.Daily Responsibilities: Build and maintain complex technical infrastructure that supports a secure platform that protects our data at rest and in transit.Work closely with Enterprise and business owners to identify endpoint coverage scope, strong analytical skills related to working with operating systems and security toolsets.Provide technical guidance on industry tools and best practices in the field of endpoint security.Monitor and maintain security tools that instrument security policies and capabilities.Provide expertise in the field of managing enterprise security systems, specifically the ability to determine the least business impactful way of implementing security tools and features Improve efficiencies using automation and orchestration solutions to reduce manual work that can be done programmaticallyAdministration of system infrastructure that is hosted within a public/private/hybrid infrastructureRemain current with new security trends, continuously assessing systems to ensure they are appropriately configured to defend the business.Experience in deploying and correlating threat intelligence and vulnerability management solutions.Provide expertise in day-to-day security operations such as onboarding/offboarding of security endpoint agents, user access management, systems' security and administration, configuration changes, system upgrades, ensuring 24x7 systems availability & DR, etc. Serve as a point of contact for incident response analysts, security operations center (SOC) analysts, application engineers and security management. Technology requirements: Degree or certifications required: • SPLUNK Admin cert.• AWS certs.Years experience: • 10+ years of experience Required background/ Skillsets:Extensive experience in Splunk and related SIEM and SOAR technologies Application: Cribl, or DemistoExtensive experience with Cloud infrastructureApplication: (AWS preferred) - EC2, ECS, Route53, SNS, Lambda, CloudWatch, Secrets Manager, RDS, etc.Extensive experience with configuration management toolsApplication: Such as Ansible or Chef and infrastructure as code tools such as Terraform or CloudFormation

Created: 2025-01-15