Information Security Analyst

The Information Security Analyst is responsible for monitoring, assessing, and enhancing the organization’s security posture. This role involves identifying vulnerabilities, responding to security incidents, implementing security controls, and ensuring compliance with relevant regulations and standards. The analyst works closely with IT, engineering, and business units to protect systems, networks, and data.

Key Responsibilities

1. Security Monitoring & Incident Response

• Monitor security alerts, logs, and system activity from SIEM, IDS/IPS, firewalls, and endpoint tools.
• Investigate, triage, and respond to security incidents and breaches.
• Conduct root cause analysis and develop corrective action plans.
• Maintain incident response playbooks and support after-action reviews.

2. Vulnerability Management

• Perform regular vulnerability scans and penetration testing coordination.
• Analyze vulnerabilities, prioritize risks, and track remediation with relevant teams.
• Maintain awareness of emerging threats, zero-day vulnerabilities, and patches.

3. Risk & Compliance

• Support risk assessments and internal/external audits.
• Ensure compliance with frameworks such as ISO 27001, NIST, SOC 2, HIPAA, or GDPR (depending on organization).
• Develop, review, and update security policies, standards, and procedures.

4. Security Tools & Technology

• Configure, manage, and optimize security technologies including SIEM, EDR, DLP, CASB, MFA, and IAM solutions.
• Assist with implementation of new security solutions and integrations.
• Monitor cloud environments (AWS, Azure, Google Cloud Platform) for misconfigurations and threats.

5. Awareness & Training

• Assist in creating and delivering employee cybersecurity awareness training.
• Promote secure practices across the organization.

6. Documentation & Reporting

• Maintain documentation for incidents, configurations, and policies.
• Prepare reports on security posture, incidents, and KPIs for management.

Required Qualifications

• Bachelor’s degree in Information Security, Computer Science, IT, or related field (or equivalent experience).
• 2–5 years of experience in cybersecurity, IT security operations, or related roles.
• Hands-on experience with SIEM, EDR, firewalls, and vulnerability scanning tools.
• Knowledge of networking protocols, OS (Windows/Linux), and cloud platforms.
• Understanding of security frameworks (NIST CSF, ISO 27001) and compliance requirements.
• Strong analytical, troubleshooting, and communication skills.

Preferred Qualifications

• Security certifications such as:
  • CompTIA Security+, CySA+
  • CEH, GSEC, CISSP, CCSK, or Azure/AWS Security certifications
• Experience with automation (Python, PowerShell) for security operations.
• Experience working with SOC environments or incident response teams.