Sr Security Analyst

About The Position

Requirements

• Minimum 10 years of security-specific work experience.
• Hands-on experience with security technologies including SIEM, IDPs, EDR software, proxies, and firewalls.
• Knowledge of penetration testing, network security, patch management, and the techniques used to expose and correct security flaws.
• Proficiency with the MITRE ATT&CK framework and threat intelligence applications.
• The ability to identify and spotlight vulnerabilities in on-premises and remote networks, remediate problems, and prevent security breaches.
• Experience with threat-led penetration testing, attack simulation, and red/blue team exercises.
• Experience managing a ticket queue, working on multiple issues at once, while providing regular updates to customers, leadership, and teammates.
• Experience with network monitoring and management tools, including network analyzers.
• A strong focus on attention to detail, timely delivery, and satisfying user requirements.
• Develop and maintain relationships with key business areas and platform owners to provide ongoing assurance, helping to identify security risks in applications.
• Bachelor's degree from four-year college or university; and at least nine years of related cybersecurity experience and/or training; or equivalent combination of education and experience.
• Must have at least one of the following certifications: CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CompTIA Advanced Security Practitioner (CASP+).
• Good oral and written communication skills.
• Ability to effectively respond to requests, present information, and drive adoption of Security practices across the organization.
• Ability to read, analyze, apply and improve technical SOPs.
• Ability to read and interpret documents such as procedure manuals, professional journals, operating and maintenance instructions, and safety rules.
• Strong ability to create detailed documentation to drive efficiency of operations.
• Soft skills such as analytical thinking, problem-solving, attention to detail, critical thinking, and data driven analysis.
• Sound decision making and trouble-shooting ability with an aptitude for solving difficult problems using creative solutions.

Responsibilities

• Collaborate with the Security team, IT Leaders, organizational stakeholders, and the Head of IT in the development and execution of Information Security strategies.
• Protect NOW Health Group’s on-premises and Coud systems, networks, and applications against all security breaches.
• Act as a technical point of contact during security incidents.
• Contain, investigate, remediate, and document information security incidents.
• Research threat actors, tactics, techniques, procedures, malware, and other Indicators of Compromise (IoC).
• Assess, monitor, and report IT vulnerabilities.
• Prepare and analyze security reports to identify trends and drive secure behaviors throughout the organization.
• Perform forensic analysis.
• Assist in developing security standards, policies, and procedures for NOW Health Group.
• Participate in management and implementation of IT projects and help deliver them on time, on budget and according to required specifications.
• Stay up to date on latest security technologies, techniques, vendors, and make recommendations to enhance the cybersecurity posture of the company.
• Provide mentorship and training to Security and IT Teams.
• Some after-hours and on-call support will be required.