The Security Analyst / Lead is responsible for our client’s computer, network and cyber security. The Security Analyst / Lead administers all aspects of information security and is responsible for the identification, investigation and resolution of security events;
as well as for conducting vulnerability audits and taking timely action to remediate findings. The Security Analyst / Lead is involved in the design, configuration and implementation of security solutions.
They are also accountable for the creation and maintenance of standards, baselines, guidelines and procedures. The Security Analyst / Lead is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding and further developing those goals to improve the Information Security maturity level.
Identify security threats from normal traffic throughout the day
Respond to security incidents and provide timely resolutions
Defend corporate IT infrastructure against unauthorized access, modification, destruction and DDoS attacks. Implement, configure firewall equipmentMonitor, respond to and rectify security incidentsProactively implement industry best practices on securityPerform vulnerability and network scanning assessments
Define, implement, maintain and enforce security policies, standards and procedures Define, review and update of security policies and standardsRegular review and updates of security proceduresContinuous improvement on security proceduresConduct annual security awareness training
Conduct internal / external security audits including but not limited to CSAE 3416 SOC II, customer security questionnaires Lead role in security audits around financeLead role in annual SOC II auditsLead role in conducting customer security questionnaires and auditsLead role in the security area for responses to Request for Proposal (RFPs)
Training (self and others) and transfer of knowledge to other IT staff for ongoing improvement in systems and application securities
5 years of relevant experience in systems security
Hands on experience managing / supporting / configuring Cisco firewalls
Working knowledge of variety of security technologies in areas of : End Point Protection, Malware Protection (Network), Patch Management, URL filtering, Identity and Access management (IAM), etc.
Proven ability to conduct research into Information Security issues and security products as required.
CCNA certification (as a minimum)
Proven analytical and problem-solving abilities
Ability to effectively prioritize and execute tasks in a high-pressure environment
Excellent written, oral, and interpersonal communication skills
Proven ability to conduct research into Information Security issues and security products as required
Proven ability to present ideas in business-friendly and user-friendly language
Highly self-motivated; able to work with minimal supervision
Keen attention to detail
Team-oriented and skilled in working within a collaborative environment