Information Security Analyst

Zyston’s client has requested that we manage the search and hiring process for a Information Security Analyst to be a key component of running their Information Security Program on a permanent basis.

KEYS:

• The successful candidate will have strong experience with SIEM tools, preferably Stellar Cyber
• The successful candidate will have experience with email security (preferably Mimecast) and managing phishing attacks
• The successful candidate will have experience with EDR/MDR tools, preferably Sentinel One
• The successful candidate will have Vulnerability management and scanning experience, preferably with Tenable
• The successful candidate will have IAM, PAM, and SSO experience
• The successful candidate will have experience with security in an AWS environment

The Information Security Analyst will be responsible for operational management of information and cyber security, to bring information security risks under explicit management control by designing, implementing, and enforcing security controls, safeguards, policies, and procedures. This person will be responsible for the hands-on security tool setup for the governing controls and monitoring of those controls and incidents. This person will be 80% sole-contributor but will work closely with the infrastructure team members and resources to perform duties.

This person will partner with Zyston’s security team members and MSSP analysts.

Responsibilities

• Work with SIEM tools
• Advising the client on remediation so risk is not accepted.
• Manages investigations and remediation of alerts delivered by the SOC / MSSP
• Works with SOC / MSSP to provide root cause analysis and changes to people, process, and technology
• Support Security Incident Response teams with incident investigations and aid in technical risk assessments
• Coordinate with system development and infrastructure teams to identify information security risks and appropriate controls for development, day-to-day operation, and emerging technologies
• Facilitate execution of NIST scoring improvements and security assessment roadmap execution
• Perform all third-party information requests (e.g. Splunk log requests for Compliance)
• Contributes to regular IT and security initiatives
• Assists in the production of weekly, monthly, and ad-hoc client reporting materials

Requirements:

• Operational experience in information security tools including the SIEM
• Experience coordinating between multiple teams / third-party vendors to perform Root Cause Analysis
• Experience as a SOC Analyst
• Build and manage Security Awareness & Training program for the client
• Conduct in-person training for executives, and users based on the role within the organization
• Phishing assessments

Qualifications:

• 5 years of relevant security engineering and analysis experience
• 2 years as a SOC Analyst
• Proven influencing and relationship management skills
• Extensive skills with decision making, analytic thinking, and effective interpersonal communication.
• Experience securing more than one IT domain such as Workstations, servers, smartphone and tablet, application security, SAN’s, virtual servers, high-availability systems and solutions, network security, security analytics, data security, compliance management, database security, intrusion prevention/detection is preferred