IT Security Analyst

Eastern Propane•Rochester, NH

3d•Onsite

About The Position

This position is responsible for planning, implementing, and maintaining security controls that protect the organization’s computer systems, networks, and data from unauthorized access, misuse, disruption, or destruction. The IT Security Analyst plays a critical role in identifying and responding to security incidents, assessing risk, and ensuring the ongoing confidentiality, integrity, and availability of information systems. This role combines technical execution with analysis, collaboration, and user education to support secure and uninterrupted business operations.

Requirements

Education: Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related technical discipline; or 3–5 years of equivalent experience of education, work and training.
Experience monitoring and responding to security alerts and incidents.
Experience securing Windows, Linux, and cloud environments.
Experience conducting risk assessments, security audits, and vulnerability testing.
Working knowledge of cybersecurity threats, vulnerabilities, and common attack techniques.
Familiarity with security tools such as firewalls, SIEM, EDR, IDS/IPS, and vulnerability scanning platforms.
Knowledge of network security concepts including TCP/IP, DNS, VPNs, and secure network architecture.
Familiarity with data encryption, access control mechanisms, and identity management concepts.
Knowledge of security frameworks and standards such as NIST, ISO, CIS, or COBIT.

Responsibilities

Plan, implement, and maintain security measures and controls to protect systems, networks, and data.
Monitor security tools, logs, and alerts to identify, investigate, and respond to potential incidents.
Analyze security violations and breaches, determine root cause, and remediate security weaknesses.
Investigate active alerts and security events, escalating incidents as appropriate.
Collaborate with stakeholders to determine appropriate solutions for identified vulnerabilities.
Protect data information systems from unauthorized access, modification, disclosure, or destruction.
Install, configure, and manage security technologies toolset.
Conduct internal audits, vulnerability assessments, and risk assessments of systems and processes.
Assist in testing, maintaining, and improving system disaster recovery and business continuity plans.
Research emerging technologies and threat intelligence to enhance the organization’s security posture.
Maintain system access controls and regularly review user and system permissions.
Recommend security enhancements, tool purchases, and architectural improvements to reduce risk.
Train end users in social engineering, information security policies, procedures, and best practices.
Be receptive to and successfully complete other duties as assigned.