Local Candidates Only!
Job Title: Security Analyst
Number of resources: 3
Timeline: 11/1/2024 (onboarding)
Location: Brentwood, TN
- These positions are on-site from 8 AM to 5 PM, M-F, in Suburban Nashville (Brentwood).
Department: Information Security
Reports To: Security Manager
Job Summary:
The Security Analyst is responsible for protecting the organization’s information systems by monitoring, analyzing, and responding to security events and incidents. This role involves working closely with other IT teams to ensure that security measures are implemented effectively and that potential threats are identified and mitigated promptly. The Security Analyst will help to maintain the security posture of the organization through continuous monitoring, vulnerability assessments, and proactive threat hunting.
Key Responsibilities:
- Security Monitoring and Incident Response:
- Monitor security alerts from various security tools (e.g., SIEM, IDS/IPS, firewalls).
- Investigate and respond to security incidents, including malware infections, unauthorized access, and data breaches.
- Perform root cause analysis and develop incident response reports.
- Vulnerability Management:
- Conduct regular vulnerability assessments and penetration testing to identify security weaknesses.
- Collaborate with IT teams to prioritize and remediate vulnerabilities based on risk.
- Threat Intelligence and Analysis:
- Analyze threat intelligence data to identify emerging threats and vulnerabilities.
- Proactively hunt for potential security incidents or malicious activities within the network.
- Security Policy and Compliance:
- Assist in the development, implementation, and enforcement of security policies, standards, and procedures.
- Ensure compliance with industry regulations and best practices, such as HIPAA, PCI-DSS, and NIST frameworks.
- Security Awareness and Training:
- Participate in security awareness training initiatives to educate staff on security best practices.
- Assist in the creation of training materials and conduct training sessions as needed.
- Security Projects and Improvements:
- Support the implementation of security-related projects, such as new security technologies and enhancements.
- Continuously assess and improve security processes and controls.
- Documentation and Reporting:
- Maintain detailed and accurate documentation of security incidents, procedures, and policies.
- Prepare and present security reports to management, highlighting trends, risks, and areas for improvement.
Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or a related field. Equivalent experience may be considered.
- 2-4 years of experience in information security or a related field.
- Strong understanding of cybersecurity concepts, including threat detection, incident response, and vulnerability management.
- Experience with security tools such as SIEM, IDS/IPS, antivirus software, and firewalls.
- Familiarity with compliance standards and frameworks (e.g., HIPAA, PCI-DSS, NIST).
- Strong analytical and problem-solving skills.
- Excellent written and verbal communication skills.
- Security certifications (e.g., CompTIA Security+, CEH, CISSP) are a plus.
Desired Attributes:
- Proactive and self-motivated with a strong attention to detail.
- Ability to work both independently and as part of a team.
- Willingness to continuously learn and stay updated with the latest cybersecurity trends and threats.