Info Security Training Analyst
About The Position
The Information Security Awareness Analyst is responsible for analyzing, implementing and maintaining security controls which enforce the information security policies and security best practice at Children's Minnesota. The analyst will focus on managing and utilizing our security awareness training tools and resources to train users and intensely raise security awareness across the organization. The analyst is also expected to have knowledge of security monitoring tools and responding to security threats and incidents to support SOC activities as needed. The ideal candidate should possess a combination of soft skills and technical skills and have experience training and communicating with users at all levels.
Requirements
- Associate's degree in a computer field or equivalent Information Security work experience.
- 2 to 4 years of IT experience with responsibilities for Information Security.
- Knowledge and experience running and managing Security Awareness tools such as KnowBe4 to conduct phishing exercises as well as managing spam and phishing emails.
- Knowledge and experience training, presenting and communicating with users at all levels.
- Knowledge and experience with threat intelligence, conducting threat research and documenting threat/vulnerability briefings for leadership.
- Ability to identify security issues gaps or risks in People, Process and Technology, and recommending mitigation strategies to management.
- Ability to utilize SOC tools and processes, preferably in M365 environment, which may include working with our MDR provider, incident response plans, SIEM, forensics, DLP and CASB tools.
- Ability to work effectively as a team member and independently with minimal supervision (i.e., self- motivated and willing to stretch to meet important deadlines).
- Excellent written and verbal communication skills.
- Strong knowledge of Microsoft Office suite of products - Word, Excel, PowerPoint, Visio, etc.
Nice To Haves
- CISSP, CompTIA Security+, GIAC certifications or similar preferred, but not required.
- Bachelor's degree is preferred.
- Knowledge and experience developing security awareness content, including newsletters, PowerPoints, security tips, guidelines and other materials.
- Knowledge and experience developing security awareness training initiatives that reduce the risk of user behavior / insider threat.
Responsibilities
- Analyzing, implementing and maintaining security controls which enforce the information security policies and security best practice.
- Managing and utilizing security awareness training tools and resources to train users and raise security awareness.
- Supporting SOC activities by having knowledge of security monitoring tools and responding to security threats and incidents.
- Developing security awareness content, including newsletters, PowerPoints, security tips, guidelines and other materials.
- Developing security awareness training initiatives that reduce the risk of user behavior / insider threat.
- Conducting threat intelligence and threat research.
- Documenting threat/vulnerability briefings for leadership.
- Identifying security issues, gaps or risks in People, Process and Technology, and recommending mitigation strategies to management.
- Utilizing SOC tools and processes, preferably in M365 environment, which may include working with our MDR provider, incident response plans, SIEM, forensics, DLP and CASB tools.
- Working effectively as a team member and independently with minimal supervision.
Benefits
- medical
- dental
- vision
- retirement
- shift differentials or premium pay (for night, weekend or on-call work)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
