Information Security Analyst

The Information Security Analyst is responsible for operations and administration of the organization’s enterprise security solutions and processes. The Information Security Analyst investigates and responds to enterprise security events and requests. Perform network security monitoring and incident response.

Maintain records of security monitoring and incident response activities Monitor and analyze a Security Information and Event Management (SIEM) to identify security issues for remediation. Configure, schedule, and review the results of vulnerability scans Coordinate account/access reviews Gather evidence for compliance audits.

Knowledge of creating Security Information Event Management (SIEM) policy rule sets with simplified matches or regex. Run reports and analyze for indicators of compromise. Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and investigates relevant event detail and summary information. Consolidate and conducts comprehensive analysis of threat data obtained from classified, proprietary, and open source resources to provide indication and warnings of impending attacks against unclassified and classified networks.

Interface with a variety of people in a polite, positive, and professional manner. Respond in a timely manner (within documented SLA) to security tickets. Be available, ready, and able to promptly handle incoming support requests. Communicate alerts regarding intrusions and compromises to network infrastructure, applications and operating systems. Assists with implementation of countermeasures or mitigating controls. Prepare briefings and reports of analysis methodology and results. Adhere to policies, procedures, and security practices. Resolve problems independently and follow documented escalation procedures Recommend changes to Standard Operating Procedures and other similar documentation Generate end-of-shift reports for documentation and knowledge transfer to subsequent security staff