Senior Information Security Analyst

About The Position

Requirements

• Bachelor’s degree in computer science, Information Systems, or a related field.
• Relevant industry certifications such as CISSP (Certified Information Systems Security Professional).
• 5 – 10 years of experience in information security or cybersecurity roles.
• Experience with security frameworks and methodologies (e.g., NIST,ISO 27001).
• Strong understanding of security concepts, principles, and technologies.
• Proficiency in using security tools like firewalls, IDS/IPS, and SIEM platforms.
• Excellent analytical skills with the ability to dissect complex problems and formulate effective technical solutions.
• Proactive in troubleshooting issues and adept at decision-making, especially under pressure or when dealing with ambiguity.
• Strong verbal and written communication skills.
• Able to collaborate and build relationships across departments.
• Able to effectively communicate security risks and best practices to technical and non-technical stakeholders.
• Demonstrated leadership abilities in guiding technical teams or projects.
• Strong organizational skills and the ability to lead by example, championing best practices and high-quality standards in solution delivery.

Nice To Haves

• Experience in the construction or civil engineering industry is highly preferred.

Responsibilities

• Implement and manage security controls such as firewalls, IDS/IPS, and DLP tools.
• Contribute to developing and enforcing security policies, standards, and procedures.
• Conduct thorough security risk assessments and identify system vulnerabilities.
• Develop and implement mitigation strategies to manage security risks.
• Conduct penetration testing and vulnerability scanning.
• Lead incident response efforts, investigate security breaches, and ensure timely remediation.
• Monitor network traffic and system logs for suspicious activity.
• Develop and maintain incident response plans.
• Participate in internal and external security audits and assessments.
• Ensure compliance with industry standards and regulatory requirements(e.g., PCI DSS, HIPAA).
• Collaborate with IT teams to implement and maintain security best practices.
• Communicate complex security concepts to both technical and non-technical audiences.
• Develop and deliver security awareness training programs to employees.
• Lead and manage security-focused projects and initiatives.
• Tracking and understanding emerging security practices and threats.
• Staying up to date with the latest security technologies and best practices.

Benefits

• Expected Base Salary: $100,000 - $115,000 per year.
• Annual performance-based bonus.
• Comprehensive group benefits program.
• Retirement savings program.
• Career growth and advancement opportunities.