Senior IT Security Analyst

Overview

On Site
Depends on Experience
Full Time

Skills

Cyber Security
Endpoint Protection
IT Audit
Identity Management
Incident Management
Information Systems
Regulatory Compliance
System Security
Web Security
infosec
information security
CISSP
CISM
SSCP
IT Security

Job Details

Job Type: Fulltime Employee

Location: Danbury, CT

Job Description

Our client is seeking a Senior IT Security Analyst who will be responsible for implementing and maintaining a cyber security program, which includes procedures and policies designed to protect enterprise communications, systems, and assets from both internal and external threats. They will direct efforts in areas such as Cloud and endpoint security, web security, vulnerability management and access control, and lead annual IT audits and Certification efforts for the organization.

The role will collaborate with MSP vendor personnel, IT personnel, Chief Legal Officer, and Chief Human Resource Officer as well as with the Software Engineering and Software Development groups.

Core Responsibilities

  • Act as first point of communication/escalation for cybersecurity incidents.
  • Collaborate with MSP vendor during incident response; oversee lessons learned and root cause analysis.
  • Advise on security considerations during project planning and implementation.
  • Recommend, Implement and maintain security measures.
  • Direct MSP vendor efforts in endpoint security, web security, vulnerability management, access management, and overall protection of Customer s information systems.
  • Monitor user behavior and information in line with Customer policies and practices.
  • Ensure compliance with frameworks and lead cybersecurity audits (including ISO 27001, SOC 2) and regulatory reviews and respond to customer questionnaires.
  • Establish Governance and maintain cybersecurity policies in alignment with certification requirements, and in accordance with industry best practice standards including NIST & CIS.
  • Collaborate with vendor SOC, SDM, TSM, CSM/ISSO, and cloud architects to maintain a secure environment.
  • Ensure service levels are met, and security incidents receive appropriate responses.

Minimum Qualifications and Experience:

  • 6 years of relevant experience in IT and Cybersecurity
  • CompTIA Security+
  • SSCP (Systems Security Certified Practitioner)
  • Bachelor s degree or equivalent

Preferred:

  • 8+ years experience
  • CISM / CISSP
  • ISC2 Membership
  • GCIH
  • Master s degree or higher

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.