Information Security Analyst

About The Position

Requirements

• Must be at least 21 years of age.
• High School Diploma or GED equivalent, required.
• Minimum of three (3) years of experience in systems, network, or security administration in enterprise environments with direct involvement in information security functions, such as security monitoring, vulnerability assessment, incident investigation, or control validation, preferred.
• Any combination of education, experience, and training that provides the required knowledge, skills, and abilities.
• Must have excellent verbal and written communication skills to promote a positive and professional image.
• Must be able to provide evidence of eligibility to work in the United States of America.
• Ability to obtain and maintain a valid Soboba Tribal Gaming Commission license.
• Required to submit to and obtain negative results on all drug and/or alcohol testing.

Nice To Haves

• Bachelors in computer science or related field, or equivalent work experience, preferred.
• Industry-recognized security certifications such as Security+, SSCP, or equivalent preferred; advanced certifications (e.g., CISSP, GIAC) are a plus.
• Broad hands-on knowledge of firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices, preferred.
• In-depth technical knowledge of enterprise network, endpoint, and platform operating systems within heterogeneous environments, preferred.
• Working technical knowledge of enterprise operating systems and platforms across Windows and Linux-based environments, preferred.
• Strong knowledge of TCP/IP and network administration/protocols, preferred.
• Hands-on experience with devices such as hubs, switches, and routers, preferred.
• Knowledge of data privacy and data protection practices, along with familiarity with information security frameworks and best practices such as NIST, CIS, and ISO standards, preferred.

Responsibilities

• Monitor, review, and analyze security alerts, logs, and reports across enterprise systems, including SIEM platforms (e.g., Splunk, QRadar, Sentinel).
• Conduct vulnerability assessments and coordinate remediation tracking with IT teams, departments, and vendors.
• Lead security incident investigations, including analysis, documentation, containment, and post-incident reviews, in coordination with the Information Security Manager and operational teams.
• Coordinate and analyze penetration testing activities and vulnerability scans using tools such as Tenable, Nessus, or Qualys.
• Design, perform, and report on security system and end-user activity audits.
• Validate the effectiveness of security controls and recommend improvements based on risk analysis and threat intelligence.
• Track and report on security findings, remediation progress, and risk trends.
• Support internal and external audits, compliance reviews, and regulatory requirements (e.g., PCI-DSS, HIPAA, NIGC) through evidence collection and analysis.
• Research emerging threats, vulnerabilities, and security trends to support continuous improvement of the security program.
• Translate technical security findings into clear, risk-based recommendations for IT teams and executive leadership.
• Collaborate with the Information Security Manager and CIO to support enterprise risk management initiatives.
• Perform risk-based analysis of security events, vulnerabilities, and incidents to determine potential business impact.
• Support third-party and vendor security assessments and risk reviews.
• Assist with security awareness initiatives, including user education, phishing simulations, and training campaigns.
• Develop and maintain security findings, investigation records, and remediation documentation.
• Participate in continuous improvement of the information security program based on evolving threats, technologies, and organizational needs.
• Engage in cross-functional collaboration with IT, compliance, legal, and operational teams to ensure alignment of security objectives.
• Perform special projects and other responsibilities, tasks, or duties as requested.

Benefits

• 401k Plan
• Basic Life Insurance (employer paid) with the option to purchase Supplemental Life Insurance
• Medical available to employees at a significantly reduced cost. Dental & Vision paid for the employee.
• Employee Assistance Program
• Wellness Program (Annual Health Fair, Wellness Education, and Incentive Programs)
• Paid Time Off
• Reward and Recognition Program (Quarterly, and Annually)
• Team member Incentives
• Discounted Team member meal