IT Security Analyst

General Summary

IT Security Analyst

The IT Security Analyst is responsible for protecting our organization's computer systems and networks from security breaches and ensuring the integrity of our data. This role involves monitoring, analyzing, and responding to security incidents, as well as implementing security measures to prevent future attacks.

This role requires a proactive individual with a strong understanding of security principles and practices.

Essential Duties and Responsibilities

•    Develop and implement security policies, standards, and procedures.
•    Conduct vulnerability assessments and penetration testing.
•    Monitor and analyze security systems for potential vulnerabilities and threats and recommend improvements of security technologies and their various reports.
•    Respond to security incidents and provide thorough investigations.
•    Participate in technical risk assessments and security exposure analyses of systems, networks, and business applications.
•    Interacts with internal and external clients on security operations requirements, identifies security process, and develops strategies/solutions to security issues.
•    Support security audit / assessment related activities and compliance reviews.
•    Provide training and support to employees on security best practices.
•    Prepare and present reports on security incidents and measures.  
•    Performs other tasks, duties and projects as assigned.
•    Provide Ad-hoc support as required.

Skills/Knowledge/Experience/Education Requirement

•    BS degree in Computer Science or other related area.
•    Minimum of 5 years of IT relevant experience or equivalent combination of experience plus at least 3 years of experience performing Security Engineering / Planning Operations
•    Strong understanding of cybersecurity principles and best practices.
•    Experience with various security tools and technologies (e.g., firewalls, intrusion detection systems, antivirus software).
•    Excellent analytical and problem-solving skills.
•    Strong communication and teamwork abilities.
•    Familiarity with regulatory requirements and industry standards (e.g., GDPR, ISO 27001).
•    Relevant certifications (e.g., CISSP, CEH, SANS, CompTIA Security+) are a plus.