Security Analyst at Intellias

• Monitor security systems, such as SIEM (Security Information and Event Management) tools, to detect and respond to security incidents.
• Develop and execute incident response plans, investigate security breaches, and coordinate response efforts with IT and other departments.
• Conduct regular vulnerability assessments and coordinate external penetration tests to identify security weaknesses and ensure that software vulnerabilities are promptly addressed through patch management processes.
• Manage access control systems to ensure that only authorized personnel have access to sensitive information and oversee the provisioning and deprovisioning of user accounts to maintain proper access levels.
• Develop and enforce security policies, standards, and procedures to protect information assets. Ensure compliance with relevant security frameworks, regulations, and standards (e.g., ISO 27001, ISO 27017, NIST, GDPR, HIPAA).
• Develop and deliver security awareness training programs for employees to promote good security practices and conduct phishing simulations to test and improve employee awareness.
• Conduct regular internal audits to evaluate the effectiveness of security controls, and prepare for and participate in external audits, such as ISO 27001 and ISO 27017 certifications.
• Perform risk assessments to identify and evaluate security risks, and develop mitigation strategies, aligning security practices with recognized frameworks (e.g., NIST Cybersecurity Framework, CIS Controls).
• Manage and maintain security tools and technologies, such as firewalls, intrusion detection systems (IDS), and endpoint protection. Continuously assess and enhance the effectiveness of these security tools.
• Stay informed about the latest threats, vulnerabilities, and security trends. Share threat intelligence with relevant stakeholders and participate in information-sharing communities.
• Document and report security incidents, including root cause analysis and lessons learned. Develop and track security metrics and key performance indicators (KPIs) to measure the effectiveness of the security program.

What you need for this

• Bachelor’s degree in computer science, Information Security, or a related field.
• Proven experience as a Security Analyst or in a similar role.
• Strong knowledge of security frameworks and standards, particularly ISO 27001 and ISO 27017.
• Experience with incident response, vulnerability management, and access management processes.
• Proficiency in using security tools and technologies (e.g., SIEM, vulnerability scanners, IAM solutions).
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work independently and as part of a team.
• English upper-intermediate.

Preferred Qualifications:

• Relevant certifications such as CISSP, CISM, CEH, or ISO 27001 Lead Auditor.
• Experience with cloud security (e.g., AWS, Azure).
• Familiarity with regulatory requirements and standards (e.g., GDPR, HIPAA).

2024-08-19T16:28:46.000 2024-08-31T23:59:59.000 TELECOMMUTE Ukraine Intellias