Loram
Analyst, IT Security Senior
Loram, Hamel, Minnesota, United States, 55340
Job Title:
IT Security Analyst Senior
FLSA Status:
Exempt
Department:
Information Technology
Reports to:
Manager of Information Technology
Flex Work Eligible!
This position qualifies for the Flexible Work Policy. Employees receive 75 work days annually to work remote! The initial amount of days is prorated for the first year based on start date.
JOB DESCRIPTION:
This position will work with the Director of IT to monitor the network for security breaches and conduct investigations of violations. The analyst takes part in designing and implementing security protocols, applications, and processes designed to secure the company, data, and applications Loram utilizes. The role installs and maintains security software and/or systems including Access Control, segmentation, firewalls, MFA, remote access, spam, and web filters. Monitors for security-related events and ensures data is protected from unauthorized users. Produces security reports for management, security committee, and board. Assists technology services with device hardening, vulnerability remediation, and security violations. Regular testing including a review of processes and penetration testing will be used to review company compliance with the security roadmap that has been laid out.
KEY DUTIES AND RESPONSIBILITIES:Analyzes security logs to identify threat events; triage and respond accordingly to security incidents following internal security protocolsConfigures security controls in all systems and IT infrastructure by policy, standards, and proceduresTests network security controls; coordinating remediation efforts and closure of any identified issuesActs as the first line of support for triage and remediation of support tickets related to security and tracks ongoing support issuesStays current with IT security trends and standards through local special interest group involvement and monitoring online information sourcesStays current with released security features of internal IT systems and softwareMaintains confidentiality and integrity in dealing with sensitive information systems and processesWorks with Infrastructure and Application teams to establish a Disaster Recovery solution and the testing of itWorks with facilities teams to ensure that physical security systems are operational and implemented correctlyESSENTIAL JOB FUNCTIONS:
Problem Solving and Decision Making
Anticipate or recognize the existence of a problemCommit to a solution promptly, and develop a realistic approach for implementingCritical and Analytical Thinking
Possess sufficient logic, inductive, and deductive reasoning ability to perform the job successfullyConcludes from relevant and/or missing informationPlanning and Organizing
Develop and execute security plans for all environments which include new functionality, migrations, and expansionAbility to prioritize, approach work in a methodical manner; work concurrently on several tasks, plan, and schedule tasks so that work is completed on timeCommunication
Express relevant information appropriately to individuals or groups considering the audience and the nature of the informationCreate documentation of environment configuration and how each area should be supportedCompliance
Abide by a Code of Ethics for professional conduct. Follow governance, risk management, and compliance guidelinesBEHAVIORAL COMPETENCIES:
Values BasedAction OrientedCreating a Service ReputationProblem SolvingTechnical LearningREQUIRED QUALIFICATIONS:
Education:
Bachelor's degree in information technology or related field
Experience:
5+ years of information security experience including defining security programs within companiesExperience with the translation of penetration testing and security assessments preferredUnderstanding of firewalls, network switches, proxies, SIEM, antivirus, and IDPS conceptsGood verbal & written communication skillsAble to work with very little supervision in a fast-paced environmentFacilitates administrator and end-user IT security training*Or 9+years equivalent combination of education and applicable experience
PREFERRED QUALIFICATIONS:
Knowledge, Skills, and Abilities:
Microsoft Security CertificationComputer Hardware, Windows 10 OS, and other software support.Azure AD and broader Azure applicationsPowerShell scripting, Power Platform applications (Power Apps, Power Automate), MS Intune, SCCMWORKING CONDITIONS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Office deskwork, requiring sitting, walking, using phone & computerMay lift up to 30 lbs. occasionallyAbility to travel up to 10% including international travel
Rev: January 2024
Loram is an Equal Opportunity Employer and will make all employment-related decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, marital status, familial status, status with regard to public assistance, membership or activity in a local commission, protected veteran status, or any other status protected by applicable law
#LI-KK1
#LI-HYBRID
IT Security Analyst Senior
FLSA Status:
Exempt
Department:
Information Technology
Reports to:
Manager of Information Technology
Flex Work Eligible!
This position qualifies for the Flexible Work Policy. Employees receive 75 work days annually to work remote! The initial amount of days is prorated for the first year based on start date.
JOB DESCRIPTION:
This position will work with the Director of IT to monitor the network for security breaches and conduct investigations of violations. The analyst takes part in designing and implementing security protocols, applications, and processes designed to secure the company, data, and applications Loram utilizes. The role installs and maintains security software and/or systems including Access Control, segmentation, firewalls, MFA, remote access, spam, and web filters. Monitors for security-related events and ensures data is protected from unauthorized users. Produces security reports for management, security committee, and board. Assists technology services with device hardening, vulnerability remediation, and security violations. Regular testing including a review of processes and penetration testing will be used to review company compliance with the security roadmap that has been laid out.
KEY DUTIES AND RESPONSIBILITIES:Analyzes security logs to identify threat events; triage and respond accordingly to security incidents following internal security protocolsConfigures security controls in all systems and IT infrastructure by policy, standards, and proceduresTests network security controls; coordinating remediation efforts and closure of any identified issuesActs as the first line of support for triage and remediation of support tickets related to security and tracks ongoing support issuesStays current with IT security trends and standards through local special interest group involvement and monitoring online information sourcesStays current with released security features of internal IT systems and softwareMaintains confidentiality and integrity in dealing with sensitive information systems and processesWorks with Infrastructure and Application teams to establish a Disaster Recovery solution and the testing of itWorks with facilities teams to ensure that physical security systems are operational and implemented correctlyESSENTIAL JOB FUNCTIONS:
Problem Solving and Decision Making
Anticipate or recognize the existence of a problemCommit to a solution promptly, and develop a realistic approach for implementingCritical and Analytical Thinking
Possess sufficient logic, inductive, and deductive reasoning ability to perform the job successfullyConcludes from relevant and/or missing informationPlanning and Organizing
Develop and execute security plans for all environments which include new functionality, migrations, and expansionAbility to prioritize, approach work in a methodical manner; work concurrently on several tasks, plan, and schedule tasks so that work is completed on timeCommunication
Express relevant information appropriately to individuals or groups considering the audience and the nature of the informationCreate documentation of environment configuration and how each area should be supportedCompliance
Abide by a Code of Ethics for professional conduct. Follow governance, risk management, and compliance guidelinesBEHAVIORAL COMPETENCIES:
Values BasedAction OrientedCreating a Service ReputationProblem SolvingTechnical LearningREQUIRED QUALIFICATIONS:
Education:
Bachelor's degree in information technology or related field
Experience:
5+ years of information security experience including defining security programs within companiesExperience with the translation of penetration testing and security assessments preferredUnderstanding of firewalls, network switches, proxies, SIEM, antivirus, and IDPS conceptsGood verbal & written communication skillsAble to work with very little supervision in a fast-paced environmentFacilitates administrator and end-user IT security training*Or 9+years equivalent combination of education and applicable experience
PREFERRED QUALIFICATIONS:
Knowledge, Skills, and Abilities:
Microsoft Security CertificationComputer Hardware, Windows 10 OS, and other software support.Azure AD and broader Azure applicationsPowerShell scripting, Power Platform applications (Power Apps, Power Automate), MS Intune, SCCMWORKING CONDITIONS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Office deskwork, requiring sitting, walking, using phone & computerMay lift up to 30 lbs. occasionallyAbility to travel up to 10% including international travel
Rev: January 2024
Loram is an Equal Opportunity Employer and will make all employment-related decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, marital status, familial status, status with regard to public assistance, membership or activity in a local commission, protected veteran status, or any other status protected by applicable law
#LI-KK1
#LI-HYBRID