IT Security Analyst

IT Security Analyst

The IT Security Analyst supports the organization's cybersecurity operations by monitoring security alerts, analyzing potential threats, and assisting with the identification, investigation, and remediation of security incidents.

This role requires strong analytical and investigative abilities, as the analyst plays a key role in the daily operations of the security program. In addition to working collaboratively with the security engineer and IT teams to maintain and enhance the organization's security posture, the role also requires excellent communication and interpersonal skills to effectively coordinate efforts, share insights, and foster a culture of security awareness across the organization.

Duties and Responsibilities:

• Monitor ticket queues, security alerts, dashboards, and threat intelligence feeds to identify, investigate, and remediate potential security issues.
• Follow all stages of the NIST incident response framework, including detection, eradication, and recovery.
• Perform initial analysis, triage, and remediation of security alerts from email, endpoint, identity, and cloud security tools such as security information and event management (SIEM), email security platforms, endpoint detection and response (EDR/XDR), and scripting/querying utilities for automation and investigation.
• Perform vulnerability management activities, including tracking findings, validating remediation, and maintaining accurate records.
• Support maintenance of security devices, systems, and tools according to best practices.
• Routinely assess network and cloud security posture against best practices.
• Investigate and respond to email phishing alert reports and quarantine release requests.
• Oversee the organization's security awareness training program, including simulated phishing campaigns, to ensure compliance.
• Support cybersecurity initiatives and projects to continually improve the organization's security posture and program maturity.
• Help maintain and update security metrics, dashboards, and recurring reports for leadership and audits.
• Document and improve operational procedures with an eye toward efficiency.
• Support information security audits and client due diligence questionnaires by collecting evidence and maintaining documentation.
• Collaborate with other IT professionals to advise on and ensure compliance with cybersecurity best practices.
• Participate in after-hours on-call rotation and respond to critical security alerts after hours.
• Perform other duties as assigned.

Desired Credentials:

• 3-5 years' experience in Information Technology roles
• 2 years' experience working as a SOC analyst or similar experience
• Bachelor's degree in Computer Science, Information Security, or a related field
• Cybersecurity certifications such as Security+, CySA+, SSCP, CCSP or CEH highly valued
• Excellent written and verbal communication skills
• Detail orientation and strong analytical problem-solving abilities
• Ability to effectively prioritize tasks and project in a fast-paced environment
• In-depth knowledge of networking protocols and experience configuring network security devices such as firewalls and IDS/IPS
• Experience with Endpoint Detection and Response (EDR) and XDR services
• Experience with Email Security platforms such as Microsoft Defender for Office, Proofpoint, and Mimecast
• Experience with the Microsoft Defender Security suite strongly preferred
• Scripting/query language experience such as Bash, PowerShell, KQL
• Hands-on experience setting up and querying SIEM tools such as Sumo Logic
• Knowledge of data privacy and compliance regulations as well as cybersecurity frameworks such as ISO 27001 and NIST

At JSSI, we are committed to rewarding our team members with competitive and comprehensive compensation packages that reflect their contributions and talent.

For this role, the annual base pay generally ranges from $80,000 to $100,000, with the final offer determined by variable factors including but not limited to market location, job-specific knowledge, skills, education, and experience. In addition, your total rewards package may include an annual discretionary bonus plan, incentive or sales bonus plan, or other form of additional compensation, based on your role.

Additionally, for full-time employees based in the USA, Canada, or the Philippines, we are proud to offer a robust suite of benefits. This ranges from insurance offerings such as medical, dental, vision, retirement savings programs, among others, starting day one of employment. For a full overview of our offerings, visit the JSSI Benefits Page on our company website.

JSSI is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or other characteristic protected by law.