IT Security Analyst (Local candidates required with DL)

• Lead complex security assessments, including penetration testing, vulnerability scanning, and risk assessments, to identify and mitigate security vulnerabilities.
• Develop and implement incident response plans, and lead incident response activities, including containment, eradication, and recovery.
• Manage and improve vulnerability management programs, ensuring timely identification and remediation of security weaknesses.
• Conduct in-depth security analysis of systems, networks, and applications to identify and address security threats.
• Develop and maintain security policies, procedures, and standards, ensuring compliance with industry regulations and best practices.
• Provide expert-level security guidance and mentorship to junior security analysts.
• Research and evaluate emerging security technologies and threats, and recommend appropriate security solutions.
• Collaborate with IT and other departments to ensure security considerations are integrated into all aspects of the organization's operations.
• Perform forensic analysis and investigations of security incidents.
• Develop and deliver security awareness training to employees.
• Generate detailed reports and presentations on security findings and recommendations.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
• Minimum of 8-10 years of experience in information security, with a proven track record of success in security analysis and incident response.
• Extensive knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS).
• Strong understanding of network protocols, operating systems, and security technologies (e.g., firewalls, intrusion detection/prevention systems, SIEM).
• Proficiency in security assessment tools and techniques, including penetration testing and vulnerability scanning.
• Experience with incident response and forensic analysis.
• Excellent analytical, problem-solving, and communication skills.
• Relevant security certifications (e.g., CISSP, CISM, CEH, OSCP) are highly desirable.
• Experience with cloud security (AWS, Azure, Google Cloud Platform) is highly desired.
• Experience with scripting languages (Python, PowerShell, etc.) is highly desired.
• Experience with threat intelligence platforms is highly desired.