Jr. Information Security Engineer/Analyst

PRIMARY FUNCTIONAn Information Security Analyst ensures that information stored on computers or networks is not disclosed to unauthorized parties or modified inadvertently. They may also create and maintain security systems. In the event of a data compromise, security analysts repair the damage and implement measures to seal the security vulnerabilities that enabled the compromise. Information Security Analysts typically work under the supervision of the Director of Information SecurityROLE AND RESPONSIBILITIESWorking knowledge of security technologies, including:DLP, SIEM, IDS/IPS, web filters, two-factor authentication, web application firewalls, and Active Directory Group Policy.Familiarity with network technologies, such as:Switches, routers, firewalls, VPNs, remote connection technologies, and multi-domain environments.Familiarity with tools, including:Qualys, Rapid7, Q1 Labs, McAfee Suites (Host & Network), FireEye, BlueCoat, Juniper, Palo Alto Networks, and MDM solutions (a plus).Technical understanding of vulnerabilities and how attackers exploit them to compromise systems.Ability to work independently with minimal supervision and consistently deliver results.Physical requirements:Able to lift 50 lbs.Able to detect and interpret color-coded events.PREFERRED SKILLSPerform and document internal and external vulnerability assessments.Knowledge of implementing test security measures, including OS patches, system hardening, and application configuration.Experience creating lab environments and automating test procedures for security measures.Ability to resolve network and system security issues through:Host analysis, forensics, and reverse engineering.Define and maintain standards, develop product selection methodologies, and review and approve solution architecture and design from a security perspective.Familiarity with the following implementations and monitoring procedures:Security tools implementation and administration.Intrusion detection alert evaluation and response.Vulnerability scanning result analysis and reporting.Network and application firewall monitoring.Security event management, including response and reporting.Antivirus and encryption status monitoring.Security data and alert analysis.Network security audits.Analyzing, diagnosing, and reporting on malware incidents.Conducting periodic and ad-hoc vulnerability scans, with communication of results to internal customers as required.Administering access control policies to secure physical and virtual systems.Ability to work independently while integrating seamlessly with other teams when necessary.QUALIFICATIONS AND EDUCATION REQUIREMENTSExperienceMinimum of 5 years of recent, consistent hands-on experience with modern technologies.ExpertiseInformation systems, computer science, information security, data security, and network security.Certifications (preferred but not required):CISSP, CISM, CISA, Security+, or other recognized information security certifications or accreditations.Daily ResponsibilitiesReview security alerts and reports daily to identify risks from policy violations, internal or external attacks, or attempts to infiltrate company email, data, or web-based systems.Produce security risk advisories based on newly identified threats and risk assessments.Conduct security compliance monitoring, create security standards, evaluate security tools, and perform testing.

Created: 2025-01-25