Kimley-Horn
Information Security Analyst
Kimley-Horn, Dallas, Texas, United States, 75215
Overview:
Kimley-Horn, one of Fortune Magazines 100 Best Companies to Work For, is looking for an Information Security Analyst to join the Information Security team in our Dallas, TX office. As an Information Security Analyst, you will play a critical role in securing our organization's technology infrastructure and assets.This is not a remote position.Responsibilities:Utilizes advanced vulnerability assessment tools and techniques to discover and assess potential threatsDevelops and maintain integrations between vulnerability assessment solutions, vulnerability reporting solutions, and related solutions as neededIdentify new threat tactics, techniques and procedures used by cyber threat actorsImplementing and managing data loss prevention measures to maintain the security and integrity of sensitive dataProactively engage in threat hunting activities to proactively search for threats in the enterprise environmentSupport the growth of our culture of cyber mindfulness both inside and outside the workplaceUnderstand cyber risks to the business and develop educational strategies and programs to educate the firmAccountable for tracking application vulnerabilities through security tools and meeting with internal teams to formulate remediation plansPartner with the Compliance team to monitor and review any changes in applicable regulations and ensure any necessary changes are implemented in a timely mannerConduct thorough investigations of security incidents to determine the root cause and impactParticipate in tabletop exercises and simulations to test and improve incident response plansQualifications:
Bachelors degree in information security, cybersecurity, or a related field3+ years of experience with Information Security, Risk Management, Compliance or a similar role within an enterprise-level organizationProfessional IT certifications relating to IT Security such as Security+, OSCP, GIAC Security Essentials (GSEC), Certified Information Systems Security Professional (CISSP), or other relevant security certifications.Experience with enterprise vulnerability reporting toolsExperience in designing and engineering data protection solutionsExperience managing medium to large projects involving multiple teams in a technical lead roleExperience with change-management policies and proceduresStrong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholdersDesired Skills:Knowledge and experience with data management securityExperience with the risk management processFamiliarity with vulnerability managementFamiliarity with the phases of penetration testing as well as experience with remediationExperience with Purview or similar tools is a plusKnowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF)
Kimley-Horn, one of Fortune Magazines 100 Best Companies to Work For, is looking for an Information Security Analyst to join the Information Security team in our Dallas, TX office. As an Information Security Analyst, you will play a critical role in securing our organization's technology infrastructure and assets.This is not a remote position.Responsibilities:Utilizes advanced vulnerability assessment tools and techniques to discover and assess potential threatsDevelops and maintain integrations between vulnerability assessment solutions, vulnerability reporting solutions, and related solutions as neededIdentify new threat tactics, techniques and procedures used by cyber threat actorsImplementing and managing data loss prevention measures to maintain the security and integrity of sensitive dataProactively engage in threat hunting activities to proactively search for threats in the enterprise environmentSupport the growth of our culture of cyber mindfulness both inside and outside the workplaceUnderstand cyber risks to the business and develop educational strategies and programs to educate the firmAccountable for tracking application vulnerabilities through security tools and meeting with internal teams to formulate remediation plansPartner with the Compliance team to monitor and review any changes in applicable regulations and ensure any necessary changes are implemented in a timely mannerConduct thorough investigations of security incidents to determine the root cause and impactParticipate in tabletop exercises and simulations to test and improve incident response plansQualifications:
Bachelors degree in information security, cybersecurity, or a related field3+ years of experience with Information Security, Risk Management, Compliance or a similar role within an enterprise-level organizationProfessional IT certifications relating to IT Security such as Security+, OSCP, GIAC Security Essentials (GSEC), Certified Information Systems Security Professional (CISSP), or other relevant security certifications.Experience with enterprise vulnerability reporting toolsExperience in designing and engineering data protection solutionsExperience managing medium to large projects involving multiple teams in a technical lead roleExperience with change-management policies and proceduresStrong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholdersDesired Skills:Knowledge and experience with data management securityExperience with the risk management processFamiliarity with vulnerability managementFamiliarity with the phases of penetration testing as well as experience with remediationExperience with Purview or similar tools is a plusKnowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF)