Information Security - Information Security Analyst

About The Position

Requirements

• High school diploma or equivalent
• 3+ years of information security experience (or a combination of IT and security)
• Current industry certifications (e.g., CISSP, CCSP, GIAC, ISACA, Microsoft)

Nice To Haves

• Experience with penetration testing or red team tools
• Background in incident response, system monitoring, and risk assessments
• Understanding of networking and security frameworks (OSI, OWASP, MITRE ATT&CK)
• Experience securing cloud and on-prem environments
• Familiarity with NIST CSF, PCI-DSS, CIS, and FFIEC frameworks
• Knowledge of SDLC and secure development practices
• Exposure to Agile environments and tools like Azure DevOps is a plus

Responsibilities

• Monitor security systems (SIEM, endpoints, IAM, cloud, email) to detect and respond to suspicious activity
• Investigate security events, create custom alerts, and escalate threats when needed
• Conduct risk assessments and threat modeling to support business initiatives
• Support incident response efforts—including triage, remediation, and documentation
• Perform security testing across systems, networks, and applications
• Manage and prioritize vulnerability remediation in partnership with system owners
• Help enforce least privilege access and sound identity management practices
• Enhance security awareness through social engineering and training programs
• Collaborate with IT teams to maintain secure systems and asset inventories
• Contribute to audits, regulatory exams, and compliance efforts
• Provide security input on projects and change management initiatives
• Stay current on emerging threats, vulnerabilities, and best practices
• Recommend security improvements that balance risk reduction with business innovation

Benefits

• Medical insurance
• Dental insurance
• Vision insurance
• Life insurance
• 18 days of PTO in your first year
• 12 holidays a year
• 6% - 8% 401(k) match