Information Security Analyst - Salem, United States - Crescens

    Crescens
    Crescens Salem, United States

    4 weeks ago

    Default job background
    Description
    Job Title: Information Security Analyst
    Location: Remote
    Duration: 1 Months

    **This can be a remote position, however they would need to come to the office to pick up their equipment

    Description:
    • Experience in the field of Information Systems Security required. CISSP, CISM, CISA, or System Administration, Networking, and Security Institute ("SANS")/ Global Information Assurance Certification ("GIAC") certifications preferred. Cisco or Microsoft certifications preferred, with extra preference given to advanced Cisco or Microsoft certifications such as Cisco Certified Security Professional ("CCSP"), Cisco Certified Network Professional ("CCNP"), Cisco Certified Design Professional ("CCDP"), Cisco Certified Internetwork Expert ("CCIE"), or Microsoft Certified Systems Engineer ("MSCE").
    • Analyst must have working knowledge of relevant FISMA/ NIST information security regulations and guidelines.
    • Working knowledge of IT Security Best Practices regarding (a) networks and networking including protocol analysis, anomaly detection, and troubleshooting, and/ or (b) working knowledge of IT Security Best Practices regarding Windows and *nix Servers and workstations required.
    • Significant working experience with vulnerability assessment tools including but not limited to the following technologies; databases, web based applications, Windows and *nix file servers and data networks.
    • Working knowledge of HIPAA, IRS and Social Security Administration information security standards and regulations preferred.
    Duties
    • Monitor security events and alerts from various sources, including SIEM (Security Information and Event Management) systems, IDS/IPS (Intrusion Detection/Prevention Systems), firewalls, and other security tools.
    View Job Posting Details
    • Perform analysis of security incidents to determine the nature and extent of the threat.
    • Investigate and respond to security events, including malware infections, network intrusions, and unauthorized access attempts.
    • Develop and maintain incident response plans and procedures.
    • Conduct vulnerability assessments and penetration testing to identify potential weaknesses and recommend remediation measures.
    • Collaborate with cross-functional teams to ensure timely and effective incident response and resolution.
    • Stay updated with the latest security threats, vulnerabilities, and industry best practices.
    • Document security incidents, including their impact, root cause analysis, and remediation steps.
    Minimum Qualifications for Our Position
    • Seven (7) years of experience in a security operations center (SOC) or related security role; OR
    • An Associate's degree or higher in Computer Science, Information Technology, or related field, OR
    • completion of a two (2) year accredited vocational training program in information technology or related field
    • AND 5 years of information systems experience in a security operations center (SOC) or related security role; OR
    • A Bachelor's degree in Information Technology, Computer Science, or related field AND three (3) years of experience in a security operations center (SOC) or related security role; OR
    • Master's degree in Information Technology, Computer Science, or related field AND one (1) year experience in a security operations center (SOC) or related security role.
    Ideal Candidate Desired Attributes & Desired Experience
    • Experience as a SOC Analyst or in a similar role
    • Strong knowledge of security principles, concepts, and technologies.
    • Familiarity with SIEM tools and security monitoring systems.
    • Experience with incident response methodologies and tools.
    • Understanding of networking protocols and security infrastructure components.
    • Excellent analytical and problem-solving skills.
    • Excellent communication skills, with the ability to articulate complex security issues to technical and non-technical stakeholders.
    • Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or GIAC Certified Incident Handler (GCIH) are a plus.
    • Excellent attention to detail and accuracy.
    • Versatile problem solver, self-starter, and can quickly learn the essentials of what needs to be done or accomplished
    • Strong relationship management including facilitation and coordination with project teams and stakeholders.
    • Ability to be adaptable, flexible, and work in a fast-paced environment.
    • High emotional quotient and self-awareness and the ability to handle interpersonal relationships judiciously and empathetically.
    • Ability to apply equity, intersectional, and anti-racist lens to projects.
    • Skill using logic and reasoning to identify the strengths and weaknesses of alternative
    Skills :
    • Certified Information Systems Security Professional (CISSP
    • CompTIA Security+
    • GIAC Certified Incident Handler (GCIH)
    • Communication
    • SIEM
    • SOC Analyst
    • Solver
    • Strong knowledge of security principles, concepts, and technologies