Information Security Operations Analyst

About The Position

Requirements

• Bachelor’s or master’s in Computer Science, Information Security, Cybersecurity, or a related field.
• 5+ years of experience as a security operations analyst or in related fields such as IT audit, enterprise risk management, penetration testing, or red team/incident response.
• Experience with common security tools such as SIEM platforms, EDR solutions, and cloud platforms (e.g., Microsoft Azure, Amazon AWS).
• Knowledge of Microsoft Azure configuration and management is highly desirable.
• 3+ years of experience with regulatory compliance and information security management frameworks (e.g., HIPAA, NIST, IS0 27000, or COBIT).
• Strong documentation and reporting skills, including the ability to record security events, investigations, and recommendations for technical and non-technical audiences.
• Excellent collaboration and communication skills with the ability to influence and work effectively across cross-functional teams.

Nice To Haves

• Industry recognized cybersecurity certification (e.g., CISSP, CISM, CompTIA Security+) preferred.

Responsibilities

• Defend against cybersecurity incidents and identify, analyze, communicate, and contain incidents as they occur.
• Monitor systems and networks for security alerts, notifications, and issues including patching and update process issues and investigate and document any security issues or events that may occur.
• Own and drive the investigation of security events and other cybersecurity incidents including review, triage, and response to alerts and notifications.
• Take a lead role in the documentation of security events and incidents and the assessment of the damage they cause.
• Review threat intelligence and analyze the current threat landscape and apply threat analysis to Moda’s infrastructure systems and networks to identify and address vulnerabilities or exploitable attack paths.
• Build and drive proactive threat hunting programs including detailed threat analysis of exploitable vulnerabilities leading to actionable remediation plans.
• Work with IT resources and architects to develop and implement cloud security strategies to facilitate migration of key assets into a public cloud hosted environment.
• Advise on installation and configuration of security controls, systems, and software to protect systems and information infrastructure and recommend enhancements based on compliance requirements and industry best practices.
• Work with IT and Security leadership to perform tests or support external testing such as network penetration tests, vulnerability testing, and disaster response failover tests to uncover network vulnerabilities.
• Advise on installation and configuration of security controls, systems, and software to protect systems and information infrastructure and recommend enhancements based on compliance requirements and industry best practices.
• Take a proactive and operational role in creating the best practices for IT security companywide.
• Support cybersecurity risk assessment activities.
• Work with both Security and IT management to ensure security policies and goals are met in infrastructure and development contexts.
• Stay current on IT security trends and news including evolving standards.
• Collaborate and communicate effectively with cross functional colleagues at all levels.
• Other duties as assigned.

Benefits

• Medical
• Dental
• Vision
• Pharmacy
• Life
• Disability
• 401K- Matching
• FSA
• Employee Assistance Program
• PTO and Company Paid Holidays