Title:::Security Incident Response Analyst
Location:::Remote
Essential Functions
Under minimal supervision, utilizes information security tools, along with other processes and applications, performing analysis of logs and systems to detect, investigate, and respond to potential security threats to system assets and data.
Coaches end-users on preventative processes and policies to ensure asset security, and is able to exercise tactful but positive influence on staff at all levels.
May also assist in the creation and\or update of IS security and privacy standards, policies and procedures.
Actively participates in safety initiatives and risk mitigating measures where appropriate and completes all position and unit safety related competencies and requirements on a timely basis.
Performs other duties as assigned.
Qualifications
Required Associate's Degree or equivalent /Technical or equivalent
Preferred Bachelor's Degree or equivalent
2 years of experience typically gained through skills/knowledge/abilities in the field Required
3 years of experience typically gained through skills/knowledge/abilities in the field Preferred
Experience in security analysis, data loss and breach prevention, or information management, preferably in an integrated delivery system Preferred
Background demonstrative of the highest level of personal and professional integrity in handling sensitive and confidential information Preferred
Skills
Familiarity with domain structures, user authentication and digital signatures, as well as detailed knowledge of system security principles and technology Preferred
Experience responding to security threats through log analysis – executing appropriate actions to contain, eradicate, recover, and determine root cause of security incidents Required
Familiarity with the use of SIEM technology to analyze logs and to respond to security threats Required
Experience responding to security threats using the following endpoint technologies and tools
Preferred:
• Antivirus / Antimalware
• EDR
• Intrusion Detection System / Intrusion Prevention System (IDS / IPS)
• Malware analysis
• Digital Forensics
Experience responding to security threats using the following network and infrastructure technologies Preferred:
• Firewall
• IDS / IPS
• Netflows
• Proxy / URL Filtering
• DNS
• Email security tools
Experience responding to information security incidents in cloud-based infrastructure and tools Preferred