Information Security Analyst

About the Role

We are seeking an Information Security Analyst to help protect the organization’s systems, networks, and data from security threats. This role is responsible for monitoring, detecting, investigating, and responding to security incidents, while supporting the development and enforcement of security controls, policies, and best practices.

Key Responsibilities

• Monitor security alerts, logs, and events to identify potential threats or vulnerabilities

• Investigate and respond to security incidents, including containment, remediation, and post-incident analysis

• Conduct vulnerability assessments and support penetration testing efforts

• Implement and maintain security controls across systems, applications, and networks

• Assist in developing, maintaining, and enforcing security policies, standards, and procedures

• Collaborate with IT, engineering, and compliance teams to integrate security into systems and processes

• Support risk assessments and security audits

• Stay current on emerging threats, vulnerabilities, and security technologies

• Assist with security awareness training and phishing simulations

Required Qualifications

• Proven experience in an information security, cybersecurity, or IT risk role

• Strong understanding of security principles, threats, and defense mechanisms

• Experience with security monitoring tools (SIEM, IDS/IPS, EDR)

• Familiarity with operating systems, networking concepts, and cloud environments

• Knowledge of common security frameworks and standards (e.g., NIST, ISO 27001)

• Strong analytical, problem-solving, and communication skills

Preferred Qualifications

• Security certifications (Security+, CISSP, CISM, CEH, or similar)

• Experience with cloud security (AWS, Azure, or Google Cloud Platform)

• Familiarity with vulnerability management and incident response tools

• Understanding of compliance requirements (SOC 2, HIPAA, PCI, GDPR, etc.)

• Experience scripting or automating security tasks