Security Monitoring Analyst

We are hiring a Security Analyst to work on our growing IT Security team

This position will primarily monitor our computer networks and IT assets for security issues; install, operate, and maintain security software; and resolve, report, and document any security issues or breaches they find Duties and Responsibilities:

Assist with all phases of incident response (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned)

Work with data from and improve the configuration of our centralized log and alert management systems

Stay current on IT security trends and news

Assist with the development and creation of procedures and policies that maintain a balance between the operational needs of the business while maintaining the security needs expected of a global operation

Assist with the development and training of a newly formed security team, building upon lessons learned from previous experience and industry standards.

Suggest and research security enhancements and make recommendations to leadership.

Job Specifications:

Monitor BW computer networks and IT assets for security issues

Install, operate, and maintain security software

Resolve, report, and document any security issues or breaches

Monitor and configure centralized log and alert management systems

Conduct proactive threat hunting

REQUIRED

We required fluent English speaker. With excellent communication skills

An experienced incident responder. Minimum of 3 years of experience within the information security field, with at least 2 or more years spent triaging and remediating security events.

Not looking for someone who is an expert in a single system, but rather someone who has real-world work experience in multiple IT systems -- a skilled generalist.

Knows how to traverse IT systems to investigate, respond to and resolve security incidents generated by our IT systems, our internal users, and our external customers.

Understanding of firewalls, proxies, malware, phishing, Security Information and Event Management (SIEM), antivirus, and IDS & IPS concepts.

Ability to identify and mitigate network vulnerabilities and explain how to avoid them.

Ability to creatively research and resolve security issues in an efficient manner, often in an unsupervised environment.

Triage and respond to alerts generated by other security systems

PREFERRED

Knowledge of some of the following systems:

Centralized Log Management, SIEM or Security Orchestration, Automation, and Response (SOAR)

Email protection and fraud defense systems

Identity Services Applications for password protection

Web and Network protection and monitoring tools

Cloud Productivity Environment maintenance and protection

Knowledge of and protection for PCs and Servers

Working knowledge of securing Linux servers and knowledge of Linux-based security scanning and monitoring tools.

A certificate relevant for a security analyst