"System Analyst III, Information Security"

Job Description

PURPOSE AND SCOPE: The Analyst, Information Security defends against information security incidents and identifies, analyzes, communicates and contains incidents as they occur.

ESSENTIAL JOB FUNCTIONS:

• Operates the institutional extended Detection and Response (XDR) system to identify, correlate and address threats across identity and access management, endpoint management, network firewall, email protection and other institutional systems
• Configures and runs the institutional Security Information and Event Management (SIEM) system and actively monitor for alerts
• Configures Security Orchestration, Automation and Response (SOAR) playbooks to, where possible, automate security incident response
• Deploys cloud-centric detection to detect threats related to cloud environments and services used by the organization
• Works with threat intelligence and performs threat-hunting queries to identity and correlate potential security events
• Provides incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary and submitting incident reports
• Documents compliance with security related laws and regulations
• Supports the creation of business continuity/disaster recovery plans, including conducting disaster recovery tests, publishing test results and making changes necessary to address deficiencies
• Perform security standards testing against computers before implementation to ensure security
• Researches emerging threats and vulnerabilities to aid in the identification of incidents
• Responsible for other reasonable, related duties as assigned

KNOWLEDGE, SKILLS, AND ABILITIES:

• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• Ability to effectively influence others to modify their opinions, plans or behaviors
• Understanding of organizational mission, values, goals and consistent application of this knowledge
• Strong problem-solving and troubleshooting skills

REQUIRED QUALIFICATIONS: Bachelor's degree and at least 5 years of related work experience, or an equivalent combination of education and experience

PREFERRED QUALIFICATIONS: BS or MA in computer science, information security, cybersecurity or related field; CC, SSCP, Security+, Network+, CSX-P, or related certification

Salary: Hiring salary range is $80,523-$92,601