Information Security Assistant

About The Position

Requirements

• Strong understanding of fundamental IT security concepts such as confidentiality, integrity, availability, non-repudiation, least privilege, defense-in-depth, identity & access management, encryption, etc.
• Familiarity with core IT infrastructure concepts including systems, clients, networking, etc. on prem and in the cloud.
• Basic understanding of scripting/coding with familiarity with at least 1 language. Golang, PowerShell, or Bash are a plus.
• Professional and concise verbal and written communication skills with the ability to adjust based on the target audience (e.g. customers, internal staff, business partners, and external vendors).
• Ability to independently investigate, learn, and solve technical issues without direct supervision.
• Ability to collaborate effectively and tactfully within diverse teams and with stakeholders.
• Experience with the Apple and Microsoft ecosystems.
• Familiar with HIPPA compliance and other compliance frameworks (i.e. ISO, NIST, CIS, etc.).
• 2 years of experience in IT Security or a related technology field.
• Bachelor’s degree in IT Security or an equivalent combination of education, certifications, and experience.
• Ability to work outside standard business hours to respond to critical security incidents and to execute changes that cannot be deployed during working hours.
• Personal electronic device (i.e. smartphone) to receive and respond to urgent security alerts.
• Ability to participate in an on-call rotation and carry/answer a work phone per the on-call schedule.
• Personal vehicle to travel between worksites.
• Capable of lifting 50 lbs.

Nice To Haves

• Golang, PowerShell, or Bash are a plus.

Responsibilities

• Execute and improve ongoing security and IT services such as phishing simulations, change management, and reoccurring audits.
• Respond and investigate security incidents and alerts by conducting audits, investigations, and log reviews.
• Review and respond to authentication and authorization requests from staff.
• Update and maintain security controls in cloud admin portals such as Azure, M365, Google Cloud Platform, etc.
• Complete application security reviews for new software solutions and application requests from employees.
• Draft updated security policies, procedures, guidelines, and training courses in collaboration with IT leadership.
• Collaborate and lead cross-departmental projects including developing project plans, connecting with stakeholders, and implementing technical changes.
• Create scripts to improve and automate workflows for systems, networks, and client devices.
• Provide tier 2 technical support for troubleshooting and issue resolution.
• Perform updates to on-prem and cloud systems and networks.

Benefits

• 75% coverage of health, dental, and vision insurance
• 15 PTO days accrued annually
• 8 paid holidays per year
• 401k matching
• Life Insurance
• Professional development training and opportunities for advancement
• $65,000 annual salary