Information Security Analyst

Position Summary: We are seeking a highly motivated Information Security Analyst to join our IT Operations team to help us develop enhancements and mature our IT Security strategy

Responsibilities

The ideal candidate will have professional experience with Microsoft Purview for data protection and classification, a solid understanding of Governance, Risk, and Compliance (GRC) frameworks, and a drive to excel in a dynamic and evolving security environment. This role is key in protecting our information assets, managing risks, and ensuring compliance with security policies and regulations. The Information Security Analyst will report to and work closely with the Manager of Information Security. Essential Responsibilities:

• In collaboration with the Manager of Information Security, develop and execute security strategies and initiatives.
• Implement and manage Microsoft Purview for data protection and classification across the organization.
• Monitor security alerts and events to identify and respond to potential threats and vulnerabilities.
• Assist in developing and maintaining GRC documentation, including risk assessments and compliance reports.
• Review and update security policies to address emerging threats and regulatory changes.
• Recommend and implement improvements to security practices and tools based on evolving threats and business needs.
• Manage end user security awareness training activities.
• Report on security metrics, incidents, and compliance status to the Manager of Information Security.
• Collaborate with other departments and teams to ensure comprehensive security coverage and support.
  
  

Job Requirements / Skills, Knowledge and Abilities:

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field preferred.
• Proven experience of 2 to 5 years in information security roles.
• Understanding of Governance, Risk, and Compliance (GRC) frameworks and principles.
• Experience with security tools and technologies, including data loss prevention (DLP) and encryption.
• Solid understanding of operating systems, networking protocols, and security frameworks.
  
  

Preferred Skills

• Expertise in network protocols, firewalls, VPNs, IDS/IPS systems, network segmentation and security zoning.
• Proficiency in security tools such as Wireshark, Nessus, Nmap, Splunk, Metasploit, and other standard industry tools.
• Experience in identifying, responding to, and mitigating security incidents.
• Knowledge of forensic techniques and incident investigation.
• Understanding of vulnerability assessment tools and remediation processes.
• Ability to prioritize and address vulnerabilities based on risk.
• Familiarity with securing cloud environments (Azure) and best practices for cloud security.
• Knowledge of securing and hardening operating systems (Linux, Windows).
• Familiarity with secure configurations and patch management.
• Understanding of encryption algorithms, SSL/TLS, and PKI management.
• Ability to implement and manage secure data storage and transmission.
• Knowledge of security standards and frameworks such as ISO/IEC 27001, NIST CSF.
• Experience conducting security audits and ensuring compliance with regulatory requirements.
• Ability to perform risk assessments and implement risk mitigation strategies.
• Experience in developing and maintaining security policies and procedures.
  
  

The base pay range for this Information Security Analyst position is $85,000 - $105,000 annually.