Job Description :
Confluent Medical Technologies is dedicated to working collaboratively with our customers, taking their projects from rapid prototype into high volume production. Our unparalleled technical expertise, proven experience and partnership with our clients has allowed us to perfect the process necessary to deliver world-class medical devices through innovative material science, engineering, and manufacturing. Our primary capabilities include : nitinol components, balloon expandable stents and balloon catheters, delivery systems, biomedical textiles, access kits, and guidewires. We take pride in our position as the leader in the medical technology space and are driven by a passion to create products that our clients have envisioned for their customers.
We are seeking a skilled and experienced Cyber Security Analyst to safeguard our organization's information systems. The ideal candidate will have a deep understanding of security protocols, risk management, and a proactive approach to detecting and responding to threats. This role involves continuous monitoring of systems, managing security tools, and ensuring compliance with industry standards and regulations. The successful candidate will work closely with IT teams, business units, and leadership to enhance security measures and mitigate risks.
As a uniquely qualified candidate, you will :
1. Threat Detection & Incident Response :
- Monitor and respond to security alerts and logs using SIEM tools, conducting thorough investigations of incidents.
- Investigate phishing attempts, malware, and unauthorized access to mitigate breaches.
- Assist in the development, testing, and execution of the Incident Response Plan (IRP).
- Analyze and manage security incidents from initial detection to remediation.
2. Vulnerability & Risk Management :
Perform regular vulnerability scans and penetration tests to identify and address security gaps.Manage patching processes and coordinate with IT teams to prioritize and remediate vulnerabilities.Assist in endpoint protection management, including anti-malware, EDR, and application whitelisting.3. Security Architecture & Compliance :
Collaborate with IT and development teams to implement and manage security solutions such as firewalls, IDS / IPS, and SIEM systems.Ensure systems align with NIST CSF v2.0.Support internal and external audits by providing necessary security evidence and documentation.4. Security Awareness & Training :
Administer security awareness training, including annual training, phishing simulations, and targeted security education.Foster a security-first culture by educating employees on cybersecurity best practices.Develop metrics and KPI's to measure risk and track improvements through training.5. Data Protection & Security Tools Management :
Oversee data loss prevention (DLP) strategies and encryption standards for sensitive information.Manage security tools for cloud environments (e.g., Azure security for Teams, SharePoint, and OneDrive) and ensure the optimal security posture.Review network security configurations, including firewalls, IDS / IPS, and VPN security settings.6. Cloud & Network Security :
Conduct assessments of cloud security, focusing on Azure security policies and industry best practices.Monitor and optimize network security, including firewall and IDS rule configurations.Support vulnerability management and penetration testing for network infrastructure.7. Identity & Access Management (IAM) :
Administer and maintain SSO solutions and identity management policies to enforce secure access controls.Oversee role-based access control (RBAC), multi-factor authentication (MFA), and other authentication mechanisms.8. Reporting & Documentation :
Provide detailed reports on security incidents, audit findings, and emerging threats to leadership.Maintain and update security documentation, including network security architecture, policies, and procedures.9. Collaboration & Continuous Improvement :
Work closely with IT teams to ensure security best practices across all systems and environments.Stay informed on new and emerging threats, vulnerabilities, and cybersecurity trends to proactively improve defenses.Qualifications :
Education & Experience :
Bachelor's degree in Cybersecurity, Information Technology, or a related field (experience in lieu of degree acceptable).2 years of hands-on experience in cybersecurity or IT security operations.Experience with vulnerability management, risk assessments, and penetration testing.In-depth knowledge of security frameworks (NIST CSF, ISO 27001, CIS Controls, etc.).Technical Skills :
Proficiency in SIEM tools, Compliance management tools and incident response platforms.Strong understanding of firewall configurations, IDS / IPS, VPNs, and network security best practices.Experience with Azure cloud security, endpoint detection, anti-malware, and threat detection tools.Familiarity with Data Loss Prevention (DLP), Web Application Firewalls (WAF), and application security.Certifications (Preferred but not required) :
Certified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)Certified Ethical Hacker (CEH)Microsoft Certified : Azure Security Engineer AssociateAdditional Skills :
Strong communication skills, with the ability to translate technical issues to non-technical stakeholders.Analytical mindset and the ability to work independently in high-pressure environments.Familiarity with compliance standards such as NIST CSF.Proficient in scripting (Python, PowerShell, or Bash) for process automation.
