Security Analyst I

Job Overview:

We are looking for a proactive Security Analyst to serve as the frontline defender of our digital infrastructure by monitoring SIEM systems and triaging real-time security alerts. You’ll be responsible for analyzing network traffic to identify threats, executing incident response playbooks to contain breaches, and collaborating with senior analysts on root cause investigations to ensure effective remediation. Beyond active defense, you will drive proactive security measures by conducting vulnerability scans and coordinating with IT teams to ensure timely patching. Your role also involves maintaining documentation of incidents and fostering a culture of vigilance by developing security awareness materials and educating colleagues on essential best practices like phishing prevention.

Responsibilities:

• Security Monitoring & Alert Triage:
  • Monitor security information and event management (SIEM) systems and other security tools for suspicious activity.
  • Triage and prioritize security alerts and events based on their potential risk and impact.
  • Analyze network traffic, log data, and system alerts to identify potential security incidents.
• Incident Response & Remediation:
  • Follow established incident response playbooks to investigate and contain security incidents.
  • Assist senior analysts in the root cause analysis of security breaches and vulnerabilities.
  • Help implement remediation steps to address detected security flaws.
• Vulnerability Management:
  • Assist in performing routine vulnerability scans on internal and external systems.
  • Analyze scan results, identify false positives, and help prioritize vulnerabilities for remediation.
  • Work with IT and development teams to ensure timely patching and security updates.
• Documentation & Reporting:
  • Document all security incidents, investigations, and mitigation actions in a timely and accurate manner.
  • Help create and update standard operating procedures (SOPs) for security tasks.
  • Generate basic security reports on key metrics, such as the number of alerts, incidents, and resolved vulnerabilities.
• Security Awareness:
  • Contribute to the development of training materials and participate in security awareness campaigns for employees.
  • Help educate colleagues on security best practices, such as phishing prevention and password hygiene.

Requirements:

• Education and Certifications: Bachelor’s degree in Computer Science or a related field, or relevant work experience. Certifications such as ITIL Foundation, Microsoft Certified Solutions Expert (MCSE), CompTIA A+, Network+, CISSP are highly valued.
• Work Experience: 2+ years in Systems Administration with a focus on Endpoint Management and IT operations in a corporate environment, ITIL best practices, network security, compliance, and vendor management.
• Experience managing and supporting multiple operating systems (Apple, Microsoft, Google) is required.
• Technical Proficiency: Deep understanding of IT systems and technologies (network architecture, cloud infrastructure, cybersecurity, etc.), best practices, and industry trends. Ability to analyze and solve complex technical issues.
• Project Management Skills: Plan, implement, and deliver IT projects. Effective communication with cross-functional teams and leadership.
• Leadership and Team Management: Establish objectives, monitor progress, and foster positive relationships. Effective communication and collaboration with other team members.
• Strategic Planning and Decision Making: Align IT strategy with business objectives. Evaluate and select software, hardware, and technology solutions. Make critical decisions on IT infrastructure, budget, and staff. Strong analytical and data-driven decision-making skills.
• Partnerships: Partner with Help Desk and SecOps teams.