Job Description :
Information Security Analyst
Montvale, NJ
Fulltime role
locals; F-F interview
The Sr. Information Security Analyst will provide technical expertise within the areas of threat management, forensics, investigations, and incident response. The individual will work with various teams and stakeholders and provide support to the Computer Security Incident Response Team (CSIRT
The position requires the ability to analyze and interpret security incidents and drive outstanding incidents to closure. Key responsibilities include assisting in the day-to-day operations and monitoring of client security applications including Security Incident and Event Management (SIEM) platform, endpoint protection (AV/ Anti-Malware), data loss prevention, intrusion detection/prevention systems, Network Access Control (NAC) and other commercial and open source security systems/applications.
Operations support includes the ability to create formal documentation and provide recommendations for security improvements. This role will require the individual to multitask and serve as a technical point-of-contact for information security related incidents. The role requires occasional off hours support and on-call rotation.
Responsibilities:
Define and promote processes, policies, standards and procedures to assure compliance with corporate and regulatory policies.
Validate IT infrastructure and other reference architectures (manufacturing, etc for security best practices and recommend changes to enhance security and reduce risks.
Document storage and transmission of sensitive information and provide architecture and requirements to ensure that this data is secured in accordance with client policies, best practices, and regulations.
Monitor various industry standard security tools (e.g., SIEM, IDS/IPS, Firewalls, Network Access Control, Endpoint Protection, DLP, etc to identify potential security related incidents.
Conduct vulnerability scans using industry standard tools such as Qualys, Rapid7, Metasploit, etc.
Analyze logs and events to report and follow-up on any unusual or suspect activities.
Maintain incident response procedures to ensure proper escalation, analysis, and resolution of security incidents.
Work with various stakeholders to ensure appropriate communication, coordination and closure of incidents.
Properly acquire and preserve integrity of data/evidence required for incident analysis to help determine the impact, and the root cause of the incident.
Participate in and lead product selection, vendor evaluations, and implementations of security technologies.
Assist with review and assessment of third parties as part of the overall Third-Party Risk Management (TPRM) program.
Desired Certifications:
Industry security and systems certifications (CISSP, CEH, GCIH, RHCSA/RHCE, MCSE, CCNA, etc
Technical Skills:
Security operations and/or engineering experience.
Experience monitoring for policy violations or malicious activity and providing appropriate response and remediation.