IT Security Analyst

As an IT Security Analyst you will concentrate on E-mail, EDR, and cloud security improvements. You will be responsible for utilizing advanced tools, such as Crowd Strike and Office 365 Email security to monitor, analyze, and report on security events and alerts across our networks, systems, and assets. You will work as part of a small but versatile team designed to secure the development environment, corporate network, and cloud environments. Because of the small team environment, we require top tier professionals who can conduct themselves with minimal oversight, recommend cost effective updates, while maintaining professionalism in a positive but stressful environment.

 

 

1. Security Monitoring (CrowdStrike):
   • You will be supporting the migration from Defender to CrowdStrike
     • Previous experience managing application deployments with Device Management Solution strongly preferred
   • SME on Data/process migration between two EDR’s
   • Work directly with CrowdStrike’s Falcon team as their lead POC (Must be personable and a good communicator)
   • Variety of break fix IT knowledge as you will be responsible for keeping security from interrupting services
   • SME for all technical and analyst functions
   • Asset management experience a major plus to ensure full coverage of deployment
2. E-mail security (Office 365)
   • Manage and maintain e-mail security rules, review alerts conduct investigations
   • Make reports and recommendation for improvements
   • Build or lead training with phishing clickers
   • Implement improvements, conduct phishing tests, write sop’s/compliance documentation
3. Incident Detection and Response:
   • Investigate and analyze security incidents, providing timely and accurate reports on the nature of the incidents, their impact, and recommended actions for remediation
   • Perform security assessments and vulnerability scanning on systems and applications to identify potential incidents and events
4. Threat Intelligence:
   • Stay abreast of the latest cybersecurity threats and vulnerabilities by actively monitoring threat intelligence sources
   • Conduct tabletops with other stakeholders, wargame possible attacks, and conduct light pen-testing.
5. Reporting:
   • Generate regular and ad-hoc reports on the cybersecurity posture, including key performance indicators, incidents, and trends
   • Communicate findings and intricacies to relevant stakeholders, both technical and non-technical, in a clear and understandable manner
6. Continuous Improvement:
   • Proactively identify areas for improvement in monitoring and reporting processes, tools, and procedures
   • Identify and implement enhancements to strengthen the overall cybersecurity posture
7. Collaboration and Communication:
   • Collaborate with other cybersecurity teams, IT departments, and business units to share insights, coordinate responses, and foster a culture of security awareness
   • Assist with training and awareness sessions to staff on cybersecurity best practices such as employee onboarding security awareness training