IT Security Analyst Job Description Template
Our company is looking for a IT Security Analyst to join our team.
Responsibilities:
- Develops, tests, implements and maintains proper security and authorization roles/profiles and configuration settings for enterprise applications;
- Researches and maintains a thorough understanding of the latest security standards, systems, products, practices and protocols;
- Uses situational awareness to anticipate and prevent accidents;
- Develops, prepares and analyzes reports;
- Participates in meetings, committees, planning groups, trainings and/or seminars;
- Maintain up-to-date security policies, standards and guidelines;
- Implement and maintain information security tools;
- Evaluate the ability of each of our third-party service providers to protect client or firm data to which we have permitted them access;
- Liaise with teams to ensure all security hygiene items are actioned accordingly;
- Support continuous monitoring processes to assess compliance with information security policies and standards, legal and regulatory compliance;
- Work closely with IT and MSSPs to analyze alerts and potential threats;
- Assist with conducting third-party information security assessment and ongoing third-party assurance activities;
- Document, prioritize, and analyze security threats, incidents, and key metrics;
- Support technology and project management as they relate to security team backlog and security hygiene activities;
- Provide guidance and support to teams as it relates to security best practices.
Requirements:
- Develops, tests, implements and maintains proper security and authorization roles/profiles and configuration settings for enterprise applications;
- Researches and maintains a thorough understanding of the latest security standards, systems, products, practices and protocols;
- Participates in meetings, committees, planning groups, trainings and/or seminars;
- Develops, prepares and analyzes reports;
- Ability to complete work to given quality standards by agreed-upon deadlines;
- Knowledge of JIRA is a plus;
- Industry knowledge of border testing, security policies, DR procedures & policies, remediation strategies and risk assessment is required;
- Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism;
- 2-3 years of experience as a security professional;
- Ability & desire to learn new product lines and technologies quickly & efficiently;
- Previous experience in a professional services firm preferred; previous law firm experience is highly desirable;
- Experience working across multiple teams from Help desk, Infrastructure, Legal, and DevOps to Executive Leadership;
- Minimum of 1-3 years of real-world IT security and integration experience including datacenter integrations;
- Strong written communication skills, demonstrating the ability to write with purpose, clarity, and accuracy;
- Experience with data protection & archiving, disaster recovery, business continuity and implementation.