InfoSec Analyst
About The Position
We are seeking an Information Security Analyst to support enterprise threat investigations, vulnerability remediation coordination, and security control improvements across a large distributed environment. This role combines incident response support, exception handling, documentation ownership, and cross-team collaboration with infrastructure and development groups. This is not a queue-based SOC monitoring role and not a compliance-only position. It is a hands-on enterprise security operations role suited for someone with broad exposure across multiple security domains who can operate independently and adapt in environments where documentation may still be evolving.
Requirements
- 3+ years of hands-on information security experience across multiple security disciplines
- 5+ years of broader IT, infrastructure, or security operations experience
- Experience investigating alerts across SIEM, endpoint, identity, or network telemetry platforms
- Experience working in large enterprise or distributed environments
- Ability to collaborate effectively across infrastructure, development, and security teams
- Strong written communication skills, including the ability to produce SOPs and investigation documentation
- Comfort operating in environments where processes are evolving rather than fully predefined
- Strong networking fundamentals (TCP/IP)
- Working knowledge of Windows server and desktop environments
- Experience supporting vulnerability remediation programs
Nice To Haves
- Exposure to SIEM platforms such as Splunk, QRadar, Securonix, Elastic, or similar
- Experience with EDR/XDR platforms such as CrowdStrike, SentinelOne, Sophos XDR, or Carbon Black
- Familiarity with identity platforms such as Active Directory, Okta, or SSO environments
- Azure security exposure
- IDS/IPS monitoring experience
- Exposure to NIST, ISO 27001, or CIS frameworks
- Linux familiarity
- Certifications such as CISSP, CEH, Security+, or similar
Responsibilities
- Investigate phishing activity, malware alerts, authentication anomalies, and IDS/IPS events
- Correlate activity across SIEM, endpoint, identity, and network telemetry sources
- Respond to security alerts and coordinate escalation with infrastructure and development teams
- Evaluate software allow/deny requests based on security risk and operational impact
- Review website filtering requests and make practical risk-informed access decisions
- Support vulnerability tracking and remediation coordination across infrastructure and Azure environments
- Recommend improvements that strengthen enterprise security controls and reduce exposure
- Build working relationships with server teams, development teams, and global security contacts
- Contribute to SOP development and improve investigation documentation where processes are still maturing
- Support enterprise security posture initiatives aligned with long-term roadmap priorities
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
Number of Employees
1-10 employees
