Cyber Security Analyst
Responsible for access management across applications, directories, and domains granting access for Windows servers and applications across the organization via fulfillment of incoming customer requests.
Contract Type: Contract Only
Contract Duration: Approximately 12 months
Key Activities:
- Consult with business line technical staff, including developers, application owners and database admins to provide access solutions while maintaining information security standards and policies.
- Consulting routinely consists of explaining information security controls and how to request appropriate access, including developing procedures that follow documented security controls.
- Identifies, designs, recommends, and implements procedure/process improvements and enhancements for increased efficiency and effectiveness.
- Resolves access related issues and incidents for customers by understanding the technical problems and solutions.
- Performs root cause analysis on specified incidents to mitigate similar issues from occurring.
- Reviews, analyzes, tests, and documents access related services and standard operating procedures (SOPs) to identify, design, and implement modifications and/or improvements for enhanced security, quality, standardization, and efficiency.
- Understands customer requirements from request intake systems and customer consultation.
- Utilizes standard IT, audit, and security standards and methodologies when provisioning and designing access solutions.
- Maintains familiarity of Identity and Access Management disciplines and methodologies, such as cloud security provider access management, role-based access control methodology, privileged access management capabilities and solutions, and identity provider provisioning.
- Strong emphasis on Windows (Server) Operating System and Active Directory.
Qualifications:
- Typically requires at least 4 years of relevant experience.
- Associate’s degree specializing in an information technology field from an accredited college or university or technical school, or equivalent combination of directly related education and/or experience preferred.
- Experience with Microsoft Active Directory strongly preferred.
- Information Security industry certification (SSCP, CISSP, GIAC, CISM, CISA, etc.) preferred. Cloud access industry certifications (AWS Cloud Practitioner, Microsoft Azure Fundamentals) preferred.
- Ability to work independently with general supervision and direction. May consult with management or more senior staff in decision-making. Ability to cover after hours on-call responsibilities on a rotation.