logo

View all jobs

Remote : Information Security Analyst III

Cypress, CA

A direct client of Atrilogy Solutions Group is in search of an Information Security Analyst III to join their team in Cypress, CA. This is a full-time direct hire role.

Title: Information Security Analyst III
Location: Cypress, CA (Remote)
Duration: Full Time

JOB SUMMARY
The Information Security Analyst III leverages experience in information systems and security to assist with the prevention, detection, and response capabilities of the Information Security team. The Information Security Analyst III assists with Information Security Engineering in the development of architectures, solutions, and standards.  In addition, the Information Security Analyst III works with other internal teams to promote secure designs and practices across the company that mitigate risks and meet business objectives and regulatory requirements.

ESSENTIAL FUNCTIONS
Security Operations – Ability to detect, prevent, and respond to security incidents. Identify risks and vulnerabilities in the network and systems, and ensure remedial actions are completed.

  • Conduct event analysis and triage to identify, and respond to, malicious and suspicious activity on internal network and systems
  • Configure and tune SIEM rules and alerts in line with the threat landscape and business operations
  • Proactively hunt for threats within the environment
  • Work with departments to remediate identified vulnerabilities
  • Be part of on-call rotation for after hours escalations

Security Governance Risk & Compliance - Establish and maintain self-audits, policies, and procedures to provide assurance that information security strategies are aligned with applicable laws and regulations through adherence to internal controls.
  • Actively review the security landscape and develop / review security policies and procedures to address new regulation, threats, or best practices
  • Understand and review existing self-audits, recommend new self-audits based on new applications, services, threats, regulation or best practices and track remediation

Threat Management - Ability to understand security threats and their risk to the organization.
  • Recommend periodic security assessments, vulnerability, and penetration tests 
  • Assist in the analysis of security assessment results and development of management summary
  • Assist IT groups in their understanding of the security assessment results and the remediation steps for low-medium complexity issues
  • Lead the tracking of any remediation required due to security assessments / tests

Participate in Security Risk Management (SRM) assessments to evaluate the design and efficacy of security controls at subsidiary companies
  • Contribute to annual Cybersecurity Awareness Month program and consistently promote good security practices
  • Host "KnowledgeShare" presentations to raise awareness of security initiatives, and champion compliance and effective security practices

Security Roadmap – Ability to guide the organization in the development of the Security Program Roadmap.
  • Contribute to the development of the Security Program roadmap
  • Lead and assist with projects defined in the roadmap
Security Engineering - Architects and implements security technologies.
  • Seek, suggest, and recommend new ideas for continuous improvements in work processes and results
  • Assist with implementation of new security technologies
  • Assist other technical teams to diagnose/troubleshoot when a security tool impacts the operation of their systems or software
 
REQUIRED & PREFERRED QUALIFICATIONS
  • Bachelor’s Degree or equivalent work experience in a related field required
  • 5+ years’ experience in an Information Security role to include experience in assessing and recommending internal application and infrastructure controls required
  • Must be self-motivated and able to work independently, with minimal supervision and as part of a team
  • Professional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), or GIAC-Security Expert (GSE), highly desirable
  • Knowledge and experience with common Information Security management frameworks and best practices required, experience with the National Institute of Standards and Technology (NIST) frameworks and Center for Internet Security (CIS) Critical Security Controls preferred
  • Experience with SIEM / log correlation technology and event analysis required
  • Data manipulation and parsing skills: Ability to use Excel, regex, and other tools to parse, format, and organize large data sets
  • Knowledge and experience with security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Web Content Filters, Web Proxies, DLP) required
  • General understanding of technical infrastructure (Active Directory, Applications, various Operating Systems, etc)
  • Detail oriented with excellent interpersonal communication skills
  • Expected to partner, collaborate, and mentor effectively with other teams on an ongoing basis



For immediate consideration please submit your resume in Word format, along with daytime contact information.  Client is unable to provide H-1B Visa sponsorship at this time. All submittals will be treated confidentially.  Selected candidate may be asked to complete a comprehensive background, credit and/or drug screening.  Principals only, no third parties please.
 
 
Atrilogy Solutions Group, Inc. (est. 2000), in partnership with Peak17 Consulting (est. 2008), provides organizations of all sizes with high-quality, cost effective information technology (IT) staffing services. 
 
Atrilogy has been recognized by Inc. magazine as one of the nation’s fastest-growing, privately held companies. Headquartered in Irvine, California, Atrilogy also has offices in Denver, Phoenix, & Atlanta with satellite offices in Boston, Jersey City, Las Vegas, and Delhi, India.
 
Clients turn to Atrilogy for expertise in:
IT staffing and placement such as Project Managers, Agile/Scrum Masters, Business Analysts, DBAs, Software Engineers, Mobile Developers (iOS, Android), DevOps, Automation, QA, Systems & Network Engineers, Cyber Security / Information Security Specialists, ERP, CRM, Business Intelligence, Data Warehousing, Big Data and Creative (UI/UX, Web Design)
 
 Clients turn to Peak17 for expertise in:
Operational staffing and placement of Accounting/Finance, Human Resources, and Marketing professionals, as well as Information Technology resources.
 
Atrilogy Solutions Group and Peak17 Consulting are Equal Opportunity Employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, gender expression, national origin, protected veteran status, or any other basis protected by applicable law, and will not be discriminated against on the basis of disability.
 
In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.




#SSI 

Powered by