Associate IT Security Analyst

Overview

Information Security Analyst: Develops and executes security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems. Researches attempted or successful efforts to compromise systems security and designs countermeasures. Maintains hardware, software and network firewalls and encryption protocols. Administers security policies to control physical and virtual access to systems. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information and systems. Job Code Tip: May be internal or external, client-focused, working in conjunction with Professional Services and outsourcing functions. May include company-wide, web-enabled solutions. Individuals whose primary focus is on developing, testing, debugging and deploying code or processing routines that support security protocols for an established system or systems should be matched to the appropriate Programmer or Programmer/Analyst family in the Information Technology/MIS functional area.

Responsibilities

Should have process knowledge and technical knowledge on any of the SIEM tools ( like Qradar, LogRhythm, AlienVault, Splunk…etc). L2/L3 level is added advantage.

• Should have process knowledge and technical knowledge in AV tools like Symantec, McAfee, Trend Micro…etc. L2/L3 level is added advantage.
• Should have knowledge in managing Vulnerability tools and various remediation efforts.
• Review security logs generated by applications, devices and other systems, taking action or escalating to appropriate teams as needed.
• Enforce incident response service level agreement.
• Work with the global IT Security team to analyze, test and recommend tools to strengthen the security posture of the company
• Create and maintain operational reports allowing IT management team to understand the current and historical landscape of the IT security risks
• Vulnerability management assessment and remediation
• Participate in daily and ad-hoc meetings related to cyber security, controls and compliance, processes and documentation related tasks
• Research the latest information technology (IT) security trends
• Help plan and carry out an organization’s way of handling security
• Develop security standards and best practices for the organization
• Recommend security enhancements to management or senior IT staff
• Document security breaches and assess the damage they cause.
• Performs other duties as assigned.
• Uphold the company’s core values of Integrity, Innovation, Accountability, and Teamwork.
• Demonstrate behavior consistent with the company’s Code of Ethics and Conduct.
• It is the responsibility of every employee to report to their manager or a member of senior management any quality problems or defects in order for corrective action to be implemented and to avoid recurrence of the problem.
• Duties may be modified or assigned at any time to meet the needs of the business.
  
  

Qualifications

B. Tech, B.E or M.C.A

• 2-5 years’ Experience working in a Security Operations Center
• 2 years minimum in the computer industry
• Knowledge working with complex Windows environments
• Knowledgeable in various security frameworks such as NIST 800-53 / NIST 800-171 / ISO27001
• Knowledge in design and administration of security tools
• Good written and verbal communication skills