Recru
Network Security Analyst
Recru, Houston, Texas, United States, 77246
Job Summary:
We are seeking an experienced and detail-oriented
Network Security Analyst
with 5+ years of expertise in security, network infrastructure, vulnerability management, and threat detection. This role requires a deep understanding of network security principles and hands-on experience with Security Information and Event Management (SIEM) tools such as
Splunk
and
Sentinel . The ideal candidate will play a crucial role in monitoring, analyzing, and responding to network security threats, ensuring the integrity and confidentiality of our organization's infrastructure. Key Responsibilities: Network Security Monitoring & Threat Detection: Continuously monitor network traffic and systems to identify potential security threats and incidents. Utilize SIEM tools like
Splunk
and
Sentinel
to collect, analyze, and correlate security events and logs. Investigate and analyze alerts, triage security incidents, and work with the response team to mitigate risks. Network Infrastructure Security: Implement and manage network security controls across various platforms to protect data and systems. Work closely with the IT team to ensure network devices (firewalls, routers, switches, etc.) are configured securely. Assess network infrastructure vulnerabilities and recommend solutions to mitigate risks. Vulnerability Management: Perform vulnerability assessments and coordinate patch management for network devices and systems. Conduct regular vulnerability scanning and threat analysis to identify security weaknesses. Collaborate with internal teams to prioritize and remediate vulnerabilities based on risk. Incident Response & Remediation: Lead the investigation of security incidents, identifying root causes and providing recommendations for remediation. Develop and implement incident response plans for network-related security incidents. Assist in the creation and implementation of security policies, procedures, and guidelines to protect network assets. Collaboration & Reporting: Work closely with cross-functional teams, including IT, network operations, and compliance teams, to ensure network security best practices. Prepare reports for senior leadership on network security status, incidents, and ongoing improvements. Provide guidance and mentorship to junior team members and assist with security awareness training. Required Qualifications: Minimum 5+ years of experience in network security, threat detection, vulnerability management, or a related field. Hands-on experience with
SIEM tools
(e.g.,
Splunk ,
Sentinel ) for security monitoring and incident analysis. Solid understanding of network protocols, firewalls, intrusion detection/prevention systems (IDS/IPS), and VPN technologies. Strong knowledge of
network infrastructure
(TCP/IP, DNS, HTTP/S, etc.) and security concepts (NIST, ISO, CIS). Proficient in
vulnerability management
tools and processes (e.g., Nessus, Qualys, Rapid7). Experience with security incident response, including root cause analysis and remediation. Familiarity with cloud security (e.g., AWS, Azure) and securing cloud infrastructure. Knowledge of
network traffic analysis
and familiarity with security tools like
Wireshark . Certifications (Preferred): CISSP
(Certified Information Systems Security Professional) CompTIA Security+ CEH
(Certified Ethical Hacker) CISM
(Certified Information Security Manager) Cisco CCNP Security
or equivalent network security certificatio Candidate must be willing to go onsite 3 days a week.
Network Security Analyst
with 5+ years of expertise in security, network infrastructure, vulnerability management, and threat detection. This role requires a deep understanding of network security principles and hands-on experience with Security Information and Event Management (SIEM) tools such as
Splunk
and
Sentinel . The ideal candidate will play a crucial role in monitoring, analyzing, and responding to network security threats, ensuring the integrity and confidentiality of our organization's infrastructure. Key Responsibilities: Network Security Monitoring & Threat Detection: Continuously monitor network traffic and systems to identify potential security threats and incidents. Utilize SIEM tools like
Splunk
and
Sentinel
to collect, analyze, and correlate security events and logs. Investigate and analyze alerts, triage security incidents, and work with the response team to mitigate risks. Network Infrastructure Security: Implement and manage network security controls across various platforms to protect data and systems. Work closely with the IT team to ensure network devices (firewalls, routers, switches, etc.) are configured securely. Assess network infrastructure vulnerabilities and recommend solutions to mitigate risks. Vulnerability Management: Perform vulnerability assessments and coordinate patch management for network devices and systems. Conduct regular vulnerability scanning and threat analysis to identify security weaknesses. Collaborate with internal teams to prioritize and remediate vulnerabilities based on risk. Incident Response & Remediation: Lead the investigation of security incidents, identifying root causes and providing recommendations for remediation. Develop and implement incident response plans for network-related security incidents. Assist in the creation and implementation of security policies, procedures, and guidelines to protect network assets. Collaboration & Reporting: Work closely with cross-functional teams, including IT, network operations, and compliance teams, to ensure network security best practices. Prepare reports for senior leadership on network security status, incidents, and ongoing improvements. Provide guidance and mentorship to junior team members and assist with security awareness training. Required Qualifications: Minimum 5+ years of experience in network security, threat detection, vulnerability management, or a related field. Hands-on experience with
SIEM tools
(e.g.,
Splunk ,
Sentinel ) for security monitoring and incident analysis. Solid understanding of network protocols, firewalls, intrusion detection/prevention systems (IDS/IPS), and VPN technologies. Strong knowledge of
network infrastructure
(TCP/IP, DNS, HTTP/S, etc.) and security concepts (NIST, ISO, CIS). Proficient in
vulnerability management
tools and processes (e.g., Nessus, Qualys, Rapid7). Experience with security incident response, including root cause analysis and remediation. Familiarity with cloud security (e.g., AWS, Azure) and securing cloud infrastructure. Knowledge of
network traffic analysis
and familiarity with security tools like
Wireshark . Certifications (Preferred): CISSP
(Certified Information Systems Security Professional) CompTIA Security+ CEH
(Certified Ethical Hacker) CISM
(Certified Information Security Manager) Cisco CCNP Security
or equivalent network security certificatio Candidate must be willing to go onsite 3 days a week.