Information Security Analyst
O.C. Tanner•Salt Lake City, UT
About The Position
The primary purpose of this position is to help coordinate and report on cyber incidents impacting clients. This position will complete tasks and projects designed to ensure security of the organization’s systems and infrastructure assets. An Information Security Analyst protects against unauthorized access, modification, or destruction. This role works with end users to determine needs of individual departments, implements policies or procedures, and tracks awareness and training through the organization.
Requirements
- Knowledge of information security risk management frameworks and compliance practices.
- Understanding of securing network technologies, client, and server operating systems.
- Ability to develop security standards and guidelines based on best practices and industry standards.
- Skills to respond to, analyze, and communicate information security incidents.
- Excellent interpersonal, communication, and presentation skills, including formal report writing.
- Well versed in incident response frameworks and methodologies.
Nice To Haves
- Skills in project management, documenting risk, and compliance activities.
- Ability to integrate third-party APIs and services into existing applications.
- Strong troubleshooting skills to diagnose and resolve issues using log queries.
- Information security related training or certifications, such as CIRT and CISSP, or GCIH preferred.
Responsibilities
- Conduct investigation, assess impact, and analyze security incidents.
- Make decisions regarding risk and measures for computer and network security.
- Experience in designing, developing, and maintaining RESTful APIs.
- Assist in the development and implementation of the system-wide incident response and handling program.
- Internally assess, evaluate, and recommend to management regarding the company’s incident response capabilities.
- Ability to integrate third-party APIs and services into existing applications.
- Provide Incident Response (IR) support when analysis confirms actionable incident.
- Provide threat and vulnerability analysis as well as security advisory services.
- Analyze and respond to previously undisclosed software and hardware vulnerabilities.
- Investigate, document, and report on information security issues and emerging trends.
- Proficiency in using log query languages (e.g., SQL, KQL, Splunk SPL) to analyze and interpret log data.
- Communicate with site personnel about security awareness and develop security awareness materials.
- Assess computer hardware, software, and systems for security risks or violations and work with ITS and campus staff and technology vendors to recommend solutions.
- Develop strategies to address awareness and training for all stakeholders as well as technical solutions.
- Other duties as assigned.
Benefits
- Fortune 100 Best Companies to Work For® list in 2021
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
