IT Security Operations Analyst

About The Position

Requirements

• Two (2) years of experience in patch management, vulnerability management, cybersecurity operations, or a related IT security field.
• Experience using MECM, ELMS, vulnerability scanning tools, and Microsoft enterprise environments.
• Knowledge of cybersecurity frameworks, security compliance requirements, and infrastructure security best practices.

Nice To Haves

• CompTIA Security+ certification (may be substituted for one year of required experience, as applicable under contract requirements).

Responsibilities

• Support enterprise cybersecurity operations by implementing and maintaining security processes, policies, and procedures aligned with organizational security standards and operational objectives.
• Collaborate with the Patch Management Team to plan, coordinate, test, and deploy Microsoft operating system and third-party software patches across enterprise environments.
• Utilize Microsoft Endpoint Configuration Manager (MECM) and Enterprise Lifecycle Management Systems (ELMS) to manage patch deployment, compliance monitoring, and remediation activities.
• Perform vulnerability assessment reviews and analyze vulnerability scan results to identify, prioritize, and mitigate security risks.
• Investigate malware detections, assess potential impact to systems and networks, and coordinate remediation efforts to minimize operational risk.
• Monitor patch compliance metrics and generate reports to track remediation progress, system security posture, and regulatory compliance requirements.
• Support security compliance initiatives by ensuring systems adhere to established cybersecurity policies, standards, and best practices.
• Conduct risk assessments and provide recommendations to address vulnerabilities, security gaps, and configuration weaknesses.
• Coordinate with network, system, and application administrators to resolve security findings and implement corrective actions.
• Maintain documentation related to patch management activities, vulnerability remediation efforts, security procedures, and operational processes.
• Assist in the development and continuous improvement of security operations workflows, incident response procedures, and vulnerability management programs.
• Provide technical support and analysis for cybersecurity initiatives, ensuring the confidentiality, integrity, and availability of enterprise information systems and infrastructure.