Security Analyst

Security Analyst is to monitor an organizations IT infrastructure. This includes monitoring security systems, apps, and networks for anomalies that could suggest a breach or assault.

The position will work closely with various functional groups and interact with internal clients, providing exceptional service in an efficient and effective manner. The Security Analyst must have Virus Protection, Email Filtering, Windows Workstation & Server, Network and Firewall experience.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

Investigating, documenting, and reporting on any information security issues as well as emerging trends.

Analyze and respond to Security events- SPAM/Phishing, Virus Infections, Firewall Events.

Monitor SIEM events and activity- analyze events, respond, resolve.

Deploy, manager and support desktop and server Virus Protection.

Monitor and report on workstation, server and application patching.

Support & manage web filtering.

Handle firewall and communications infrastructure.

Support wireless and VPN infrastructure.

Security tools include firewalls, intrusion detection and prevention technology, threat and vulnerability management tools, data loss prevention tools, filtering technologies, traffic inspection solutions, reporting technology and data analytics platforms.

Investigate suspicious activities, contain and prevent them.

Network defense - must understand how network traffic flows work on the network and extended remote and cloud systems. Tasks include monitoring, discovering, and analyzing possible threats. \

Incident response - must be able to manage the effects of incidents in a manner that reduces the impact of breaches.

REQUIRED KNOWLEDGE, SKILLS, AND ABILITIES:

Communication skills: Efficient communication is essential when collaborating with IT security teams or reporting incidents to stakeholders within the organization.

Proficiency in using Security Information and Event Management (SIEM)

Strong problem solving and project management skills with acute attention to detail and ability to meet tight deadlines.

Exceptional experience responding to Email Phishing and SPAM alerts.

Experience with MS O365, Azure, MS Defender for Cloud.

Experience with MS Intune, MS Azure ARC, MS SCCM.

Experience with different firewalls: Palo Alto, Meraki and other firewall.

Experience supporting Microsoft Workstation, Sever, Active Directory- security.

Experience securing and managing Wi-Fi systems - Cisco, Meraki and others.

Experience installing, upgrading, and maintaining firewall and VPN policies.

Network Protocols TCP/IP / IPSEC / SSL.

Experience supporting virus protection- Sophos, Windows Defender, CrowdStrike.

Log retention management- firewall, server and applications.

Desktop support- virus infection remediation, VPN client installation & support.

Solid knowledge of MS Office (Word, Excel, Access, Visio, and Project).

Skilled in being a self-motivating, analytical, and proactive team player.

Experience assessing network device and version security compliance.

DESIRED SKILLS:

Security Information Event Manager system experience. QRadar, Splunk or Sentinel.

Security Incidents Response.

Microsoft SCCM or other patch/asset management products.

Microsoft 0365 Security- SPAM and malware filtering.

Network Router and Switch support and Security configuration.