Security Analyst - Camino Media

Clinica Sierra Vista•Bakersfield, CA

19h

About The Position

The Security Analyst monitors, detects, and investigates security events across the organization’s environment as the first line of analytical response within the Information Security program. Working from the security operations queue, this role performs alert triage and investigation, determines true and false positives, and escalates confirmed incidents to senior security staff. The Security Analyst operates security tools including the SIEM, endpoint detection platform, and vulnerability scanner—as a practitioner, using them to identify threats and support investigations. This is an execution-focused role that works under the direct guidance of the Security Engineer III and Information Security leadership, following defined playbooks and procedures.

Requirements

Bachelor's degree in Information Security, Computer Science, or related field, or equivalent practical experience.
2–5 years of experience in a security analyst role or related IT field.
Working knowledge of on-premises infrastructure including Active Directory, DNS, Group Policy, Windows Server, and VMware vSphere/ESXi.
Basic understanding of network security, firewalls, encryption, and threat detection systems.
Familiarity with security tools such as SIEM, antivirus, IDS/IPS, and firewall platforms.
Working knowledge of security and compliance frameworks including HIPAA, NIST, and CIS Controls.
Strong interest in cybersecurity and commitment to continuous learning.

Nice To Haves

Experience with Microsoft security tools—including Defender for Endpoint, Sentinel, Purview, and Intune—is a strong plus; candidates with equivalent experience on comparable platforms who demonstrate transferable skills will be considered.
Certifications such as CompTIA Security+, CompTIA CySA+, or equivalent are preferred but not required.

Responsibilities

Execute security monitoring, triage, and investigation procedures per established team playbooks.
Research security alerts, threat indicators, and emerging vulnerabilities; summarize and report findings to senior security staff.
Support risk assessments, compliance reviews, and incident analyses through accurate data collection and documentation.
Attend security team meetings and agile ceremonies; provide timely status updates on assigned tasks and open items.
Operate security platforms including SIEM, EDR, vulnerability scanner, and email security tools as a practitioner and analyst, not as an administrator.
Perform routine validation checks across security platforms to confirm data quality and alert fidelity.
Support SIEM log source and asset onboarding by verifying expected data flow and documenting results.
Assist with testing security tool configurations and policy changes as directed.
Monitor the security alert queue and SIEM dashboard daily; triage alerts by severity, determine true or false positive status, document findings, and escalate confirmed incidents per defined criteria.
Correlate log data across endpoint, network, email, and identity sources; apply threat intelligence from approved feeds to enrich active investigations and alert context.
Support incident response activities by collecting logs, screenshots, and evidence; document all actions taken in the incident record.
Analyze vulnerability scan results; research CVE context and exploitability, assign risk priority, and track remediation status for assigned systems.
Complete security tickets, service requests, and ad-hoc tasks with accurate, timely documentation; assist with audit and compliance evidence collection (HIPAA, HITRUST, NIST) and coordinate with IT and Infrastructure teams as directed.