ITech Consulting Partners
Information Security Analyst
ITech Consulting Partners, Danbury, Connecticut, us, 06813
$100,000 to $120,000 + Full Benefits + Paid RelocationPosition Summary:The Information Security Analyst is a pivotal, hands-on role dedicated to ensuring the
integrity and security
of all data across both on-premises and cloud-based applications. This is not a remote or hybrid position; onsite presence is required Monday to Thursday, with Fridays currently remote.
Implement and maintain the Center for Internet Security (CIS) Controls framework to maintain robust security protocols and procedures.Implement and manage security measures for information systems to prevent breaches, detect vulnerabilities, and manage risk.Conduct regular system audits to ensure compliance with security standards.Proficiency in AI and its application in data security and protection strategies.Collaborate with IT teams to integrate security practices into the development lifecycle.Provide training and guidance to IT staff on cybersecurity best practices.Stay abreast of the latest cybersecurity trends and technologies.Assist with updating and reviewing the System Security Plan (SSP).Develop controls such as firewalls, business systems, data leakage protection systems, patching, encryption, vulnerability scanning, remediation, and advise on configurations for various security tools.Evaluate, categorize, and remediate security events and vulnerabilities before they become incidents.Identify security gaps through ongoing monitoring of all information security controls, propose enhancements, and implement them fully.Participate in cybersecurity projects to ensure timely delivery that meets the company's information protection requirements.Maintain relationships with Managed Security Services Providers.Own vulnerability management by categorizing, evaluating risk, and implementing remediation steps to closure.Manage patching for servers and endpoints.Participate in on-call rotation for emergency-related events due to outages or cyber events.This is a hands-on, technical role that requires a robust background in infrastructure technologies to assess and deploy solutions.Education and Experience Qualifications:BA/BS degree in information technology, compliance, information management, infrastructure, or information security with a minimum of 5 to 7 years of work experience.Candidates must possess analytical skills developed from training in Cybersecurity, Information Systems, Computer Science, helpdesk/infrastructure, or similar disciplines.Experience managing Rapid7.Experience managing NextGen AV systems.Hands-on experience running AI models.Experience with information security framework models such as CIS Framework, NIST, etc., implementing and auditing security measures, security response, and incident management.Working knowledge of network switches, routers, firewalls, VPN, network security, administration of DLP, antivirus, antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs.Knowledgeable in security best practices such as encryption, hashing, vulnerability scans, event log monitoring, intrusion detection and prevention, eDiscovery, and content filtering.Ability to oversee, resolve, and consistently enhance the vulnerability management program.Ability to propose and implement solutions for closing identified vulnerabilities.Knowledge of cloud providers' security (AWS, Google Cloud Platform, or Azure).Prior experience managing EDR solutions.Prior experience with SIEM, configuration management, hardening, and vulnerability scanning.Experience with identity access management systems (IAM).Previous experience in a HIPAA and FDA regulated environment preferred.
#J-18808-Ljbffr
integrity and security
of all data across both on-premises and cloud-based applications. This is not a remote or hybrid position; onsite presence is required Monday to Thursday, with Fridays currently remote.
Implement and maintain the Center for Internet Security (CIS) Controls framework to maintain robust security protocols and procedures.Implement and manage security measures for information systems to prevent breaches, detect vulnerabilities, and manage risk.Conduct regular system audits to ensure compliance with security standards.Proficiency in AI and its application in data security and protection strategies.Collaborate with IT teams to integrate security practices into the development lifecycle.Provide training and guidance to IT staff on cybersecurity best practices.Stay abreast of the latest cybersecurity trends and technologies.Assist with updating and reviewing the System Security Plan (SSP).Develop controls such as firewalls, business systems, data leakage protection systems, patching, encryption, vulnerability scanning, remediation, and advise on configurations for various security tools.Evaluate, categorize, and remediate security events and vulnerabilities before they become incidents.Identify security gaps through ongoing monitoring of all information security controls, propose enhancements, and implement them fully.Participate in cybersecurity projects to ensure timely delivery that meets the company's information protection requirements.Maintain relationships with Managed Security Services Providers.Own vulnerability management by categorizing, evaluating risk, and implementing remediation steps to closure.Manage patching for servers and endpoints.Participate in on-call rotation for emergency-related events due to outages or cyber events.This is a hands-on, technical role that requires a robust background in infrastructure technologies to assess and deploy solutions.Education and Experience Qualifications:BA/BS degree in information technology, compliance, information management, infrastructure, or information security with a minimum of 5 to 7 years of work experience.Candidates must possess analytical skills developed from training in Cybersecurity, Information Systems, Computer Science, helpdesk/infrastructure, or similar disciplines.Experience managing Rapid7.Experience managing NextGen AV systems.Hands-on experience running AI models.Experience with information security framework models such as CIS Framework, NIST, etc., implementing and auditing security measures, security response, and incident management.Working knowledge of network switches, routers, firewalls, VPN, network security, administration of DLP, antivirus, antimalware, IDS/IPS, SIEM, SMTP, Email security, AD, Group Policy, DNS, DHCP, and VLANs.Knowledgeable in security best practices such as encryption, hashing, vulnerability scans, event log monitoring, intrusion detection and prevention, eDiscovery, and content filtering.Ability to oversee, resolve, and consistently enhance the vulnerability management program.Ability to propose and implement solutions for closing identified vulnerabilities.Knowledge of cloud providers' security (AWS, Google Cloud Platform, or Azure).Prior experience managing EDR solutions.Prior experience with SIEM, configuration management, hardening, and vulnerability scanning.Experience with identity access management systems (IAM).Previous experience in a HIPAA and FDA regulated environment preferred.
#J-18808-Ljbffr