Considine Search · 2 days ago
Information Security Analyst
Wonder how qualified you are to the job?
Maximize your interview chances
ConsultingHuman Resources
Growth Opportunities
Insider Connection @Considine Search
Responsibilities
Act as the primary resource/lead or backup resource for at least 2 of the Firm’s security platforms (Palo Alto SaaS/SASE/Strata, FireEye, Microsoft Defender for Endpoint|Identity|Etc, Azure Sentinel, CyberArk, Splunk, Varonis, Vectra, Forescout, Illumio, and others) including design, implementation, and maintenance of those platforms. Continually evaluate new features for implementation in the environment.
Develop functional knowledge of the comprehensive security architecture in order to support those technologies when needed, as well as integrate these technologies creatively and effectively.
Perform front line security incident response as a member of a 5 person on call rotation (working in conjunction with Managed Security Services Providers). Using the Firm’s established processes and procedures, provide timely investigation and resolution to all suspicious email reports, malware instances, and other security events. Develop automation scripts to assist in the team’s incident response effort.
Using established processes, conduct detailed, written security reviews for vendors, projects, and technologies. The security review process includes conducting initial intake interviews with stakeholders, researching and performing due diligence, using third party risk management tools, conducting risk assessments, and presenting final recommendations for moving forward in a secure manner.
Throughout the system development lifecycle (SDLC), assess and review the Firm’s current technology infrastructure to identify key risk areas, ensuring that adequate controls are in place to address those risks. Take a lead position to research specific security technologies and controls as requested by senior management.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Experience in protecting cloud environments, especially Microsoft Azure
Experience with SIEM, XDR, threat intelligence, automation, network security, application security, forensics/IR, and security architecture
Ability to think strategically about and fix specific security risks
Experience with security incident response
Experience with security reviews for vendors, projects, and technologies
Knowledge of security technologies and controls
Ability to communicate effectively with all levels of the business regarding security issues
Understanding security in a holistic and highly technical manner
Preferred
Experience with Palo Alto SaaS/SASE/Strata, FireEye, Microsoft Defender for Endpoint|Identity|Etc, Azure Sentinel, CyberArk, Splunk, Varonis, Vectra, Forescout, Illumio, and other security platforms