Information Security Analyst

About The Position

Requirements

• Minimum seven years of Information Technology and Information Technology security experience with a background in software security, software develop using Agile and DevOps methods and tools
• Bachelor's degree in Business Administration or Management, Computer Science(s), Information Technology/Security
• A holistic understanding of attack vectors, current threats, and remediation strategies

Nice To Haves

• Professional privacy or security qualifications such as CIPP and/or CISSP preferred
• Experience in documenting processes and reviewing or drafting technical architecture and cloud security architecture material better practice; prefer prior Azure experience
• Experience with computer forensics practices and procedures, basic investigations, and evidence handling is preferred

Responsibilities

• Leads the security operations for the platform, focusing on identifying and responding to threats.
• Implements and manages security monitoring tools and incident response procedures.
• Conducts vulnerability assessments and penetration testing to proactively identify security weaknesses.
• Ensures the platform complies with internal security policies and external regulations.
• Implement and govern GitHub and GitHub Advanced Security within Agile/DevOps pipelines, embedding DevSecOps practices and tooling (e.g., CodeQL code scanning, secret scanning, dependency/SCA, IaC scanning, secure CI/CD and branch protections) to proactively identify, triage, and remediate vulnerabilities and continuously mature the secure SDLC.
• Apply AI capabilities across the firm’s AI ecosystem—including the aIQ Chat agent space—by rapidly learning and integrating new models/tools; design and maintain secure AI workflows and guardrails (data protection, access controls, prompt safety, model risk management, compliance