The Information Security Analyst will be responsible for working with the Information Security Manager on the continuous improvement and development of the firm’s security program, operations, and systems security maintenance. The ideal candidate will have a strong basic proficiency in IT and have a desire to learn and grow in the information security field. The Information Security Analyst will be responsible for maintaining security reports, assisting with risk assessments, and developing monthly and quarterly reporting dashboards. Finally, this individual will provide key contribution into thoughts and ideas for protecting the overall enterprise security of the firm.
Manages systems and processes to protect client, employee and Firm information.
Investigates and remediates threats and escalated alerts.
Performs monitoring and maintenance of various security systems and technologies.
Implements changes to multi-site firewall and IPS implementations.
Works with end users on triaging and containing potential security incidents.
Supports various security projects and initiatives.
Assists in developing and implementing security standards, procedures and protocols.
Completes weekly system audits, anti-virus management, configuration management, and identity management oversight.
Performs vulnerability scans, conducts risk assessments, and oversees the vulnerability management remediation process.
Assists with the management and operation of information security tools and processes including security event management, anti-virus and malware defense and threat intelligence.
Develops analysis techniques to support common and unique use-case monitoring against security indicators including device logs, network intrusion sensors, host intrusion indicators, and web filters/proxy.
Monitors, collects, and analyzes cybersecurity data (e.g. intrusion attempts, mail protection statistics, data loss protection statistics, etc.) generated from security systems and develops KPI and metrics reports.
Partners with ISM and other stakeholders to improve security procedures, IT processes, and the security of existing systems.
Communicates with other departments to report and resolve IT security issues.
Effectively communicates with stakeholders at all levels of the organization.
Provides 24x7 on-call support for IT security issues and systems.
Bachelor’s degree in Information systems security or related field is required.
Knowledge of and experience in information security and monitoring systems.
Familiarity/comfort level working with IT Security software and hardware.
Strong writing / documentation skills.
Strong communication skills.
Self-starter with the ability to work independently, while having good judgment as to when consultation is required.
Ability to work on multiple projects and perform well under deadlines.
Enthusiastic, flexible, willing to pitch in where needed.
Strong drive to learn and grow in the cyber security field.
Must have minimal physical mobility. Position may occasionally require standing, walking, reaching, and lifting up to 15 pounds.
Must have the ability to operate equipment such as a computer and copy machine.
Must have the ability to communicate clearly and to read and follow detailed instructions.
Must have the ability to prepare assorted documents and other related materials.
Must have the ability to work in stressful conditions under time deadlines.