Senior Information Security Analyst

About The Position

Requirements

• Communication Skills: Proficient in both verbal and written communication, with the ability to convey technical information to non-technical audiences.
• Analytical Skills: Strong analytical abilities with keen attention to detail, essential for identifying and addressing security events.
• SIEM Proficiency: Skilled in identifying, triaging, and analyzing security events using Security Information and Event Management systems.
• Incident Response Knowledge: Deep understanding of incident response processes and methodologies.
• Scripting Experience: Familiarity with scripting languages to automate security operations and enhance the incident response process.
• Attacker Methodology: Demonstrated understanding of the methodologies used by attackers, which supports proactive defense measures.
• Intrusion Detection: Solid grasp of intrusion detection systems, AI-based attack detection and prevention strategies, and SOC (Security Operations Center) operations.
• Cloud Security: Knowledge of cloud infrastructure and security considerations in a cloud environment.
• Core Infrastructure Knowledge: Familiarity with core infrastructure components such as DNS, Active Directory, and Exchange.
• Bachelor’s Degree in Information Security, Cybersecurity or similar fields.
• 7 years’ working within Cybersecurity field.

Nice To Haves

• Security Tools Experience: Prior experience with security tools like Microsoft Defender, CrowdStrike, and Palo Alto Networks is desirable.
• Professional Services Background: Experience in professional services sectors such as legal, finance, or consulting is preferred.
• Master’s Degree in Information Security, Cybersecurity or similar fields.
• Professional-level industry certification (e.g. CISSP, GIAC, SANS, etc.) preferred.

Responsibilities

• Mentoring and guiding Information Security Analysts.
• Responsible for evaluating the effectiveness of and improving various information security program functions at the Firm.
• Reviewing Security Incident and Event Management (SIEM) systems, which include regular reporting of metrics and summaries regarding ongoing investigations and ticket tracking
• Performing alert triage, which involves investigating and analyzing security incidents, identifying root causes, and developing appropriate mitigation strategies.
• Ensuring effective Endpoint Threat Detection, including EDR capabilities, traditional antivirus, asset management, and familiarity with baseline and configuration management tools.
• Managing Next Generation Firewalls and/or Intrusion Detection/Prevention Systems (IDS/IPS).
• Engaging in Threat Hunting and utilizing Threat Intelligence.
• Utilizing malware sandbox technologies and interpreting the results.
• Overseeing Incident Response tools, processes, and capabilities.
• Possessing experience or a deep understanding of vulnerability and configuration management.
• Conducting independent project work.

Benefits

• We offer a comprehensive package of benefits including medical/dental/vision insurance, and 401(k).