IS Security Analyst (Junior and Senior Levels) - US
Job Overview:
The Information Security Analyst is responsible for protecting organizational data and systems by planning,implementing, and monitoring security measures. This role works to prevent, detect, and respond to security
incidents while ensuring compliance with relevant security policies, standards, and regulations.
Essential Responsibilities:
§ Monitor security systems and networks for vulnerabilities and suspicious activities
§ Perform regular security assessments, penetration tests, and vulnerability scans
§ Develop and implement security policies, procedures, and controls
§ Respond to security incidents and breaches according to established protocols
§ Maintain documentation of security systems, policies, and procedures
§ Collaborate with IT teams to ensure security best practices are integrated into systems and
applications
§ Stay current on emerging threats and security trends
Additional Responsibilities:
§ Participate in disaster recovery planning and testing
§ Provide security awareness training to staff members
§ Assist with compliance audits and remediation efforts
§ Research and recommend new security tools and technologies
§ Support project teams in implementing secure solutions
§ Develop metrics and reporting on security status and incidents/
Specific Knowledge, Skills, and Abilities:
§ Strong understanding of network security principles, authentication protocols, and encryption
technologies
§ Proficiency in security tools such as SIEM systems, vulnerability scanners, and intrusion
detection/prevention systems, EDR, NDR, an others
§ Knowledge of security frameworks and standards (NIST, ISO 27001, CIS, etc.)
§ Excellent analytical skills with the ability to identify patterns and anomalies in data
§ Strong problem-solving abilities and attention to detail
§ Effective communication skills to explain technical concepts to non-technical stakeholders
§ Ability to work under pressure during security incidents
§ Familiarity with cloud security principles and technologies
Preferred Education, Experience and Licenses:
§ 2-5 years of experience in information security or related IT roles
§ Industry certifications such as Security+, CISSP, CEH, or CISM
§ Experience with security compliance frameworks (SOX, HIPAA, PCI DSS, etc.)
§ Previous experience in incident response and forensic analysis
§ Familiarity with risk assessment methodologies