IT Security Analyst

Integrated Project Management Company•Burr Ridge, IL

1d•$65,000 - $100,000•Hybrid

About The Position

The Information Technology (IT) team plays a vital role in fostering collaboration and driving innovation throughout the organization. Their primary responsibilities include maintaining a robust network and infrastructure, evaluating and deploying new technologies, supporting and enhancing enterprise applications, and efficiently resolving technical issues. By proactively managing business risks and embedding security awareness into the company culture, the team helps safeguard against cyber-attacks, minimize the impact of security breaches, and protect sensitive information. The IT team is committed to continuous learning, effective problem solving, and upholding the highest standards of ethical conduct. The Security Analyst is responsible for ensuring the protection of corporate assets such as laptops, servers, and network connections. This individual contributes to the detection, investigation, and defense against information security incidents affecting IT systems and data. Key activities include reviewing server and firewall logs, monitoring network traffic, troubleshooting issues, and conducting vulnerability assessments as needed. The analyst is expected to respond to and resolve security incidents promptly and accurately. Success in this role requires knowledge of information security defenses, network protocols, and a commitment to staying current with evolving security standards and best practices.

Requirements

Relies on experience and judgment to effectively plan and structure a complex workload and facilitate multiple activities autonomously.
Professional and effective, open, and honest written and oral communication skills in the English language.
Strong interpersonal, critical thinking, and leadership skills.
Willingness to continuously learn and grow knowledge and skillset through obtaining certifications, attending training, and/or seeking out other resources.
Demonstrated work ethic, integrity, and professional conduct.
A Bachelors degree in Cybersecurity or related field.
Up to 3 years of experience in information technology in a Microsoft environment with a focus to cybersecurity.
Knowledge of standard concepts, practices, and procedures of system administration including Windows Server, Active Directory, Microsoft Entra, Microsoft 365, and VMware.
Knowledge of standard concepts, practices, and procedures of physical and virtual network infrastructure including routers, switches, firewalls.
Familiarity with cybersecurity laws, regulations, frameworks, and standards, including ISO/IEC 27001 and NIST CSF.

Nice To Haves

Entry-level cybersecurity certifications (Security+, SSCP, GSEC) are preferred.

Responsibilities

Monitor, analyze, and maintain systems and procedures to ensure the security of internal information systems, networks, databases, and web-based resources.
Respond promptly to alerts from security tools, monitor network activity for anomalies, and report, investigate, and resolve security incidents.
Perform vulnerability and threat assessments to identify and address potential risks.
Track, analyze, and communicate key security performance metrics.
Contribute to business continuity and disaster recovery planning efforts.
Verify that systems comply with information security standards and requirements.
Promote security awareness and educate all IPM employees on best practices.
Enforce policies and technical controls to safeguard IPM’s network, systems, applications, and data.
Assist in the development and ongoing management of the Information Security Management System (ISMS).
Carry out additional duties as assigned to support organizational security objectives.