Information Cybersecurity Analyst Jobs

Create processes for IT employees to achieve security policy and cyber-risk management objectives.

Work across IT and business teams on identity and access management strategies.

Oversee security policy adherence, including the development and maintenance of security control documentation in support of audit and regulatory requirements.

Write reports on the current state of policies, incident responses, recovery capabilities, and security program trends.

Bachelor's degree in computer science, cybersecurity, or equivalent work experience.

Experience working with control frameworks, maturity models, and audit standards, including NIST, ISO, CMMI, SSAE18, etc.

Preferred skills include certifications, knowledge of cloud security tools, and familiarity with retail applications.

They will also participate in Incident Response and project management for cybersecurity implementations.

They report to the Cyber Security Manager and have no direct supervision but lead remediation efforts.

They should also be self-motivated, customer-oriented, and able to handle confidential information.

Manage and oversee the regular patch management process for third-party applications, ensuring timely updates to mitigate vulnerabilities.

Several years of hands-on experience in cybersecurity, including experience with cloud security (Azure, Office 365), SIEM, and patch management.

Lead the selection and deployment of appropriate security technologies, including SIEM solutions, endpoint protection, and vulnerability management tools.

Stay informed about emerging threats, vulnerabilities, and security technologies to adapt the company's security strategy as needed.

Bachelor’s degree in computer science, Information Security, or a related field (or equivalent experience).

Certifications such as Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP), or equivalent.

Pursuit of a bachelor's or master's degree in computer science, cybersecurity, or an educational equivalent

Basic programming and scripting skills (e.g., Python, PowerShell, JavaScript, SQL) to automate security tasks and analyze data.

Experience using security tools such as SIEM, antivirus, ISPS, and vulnerability scanners.

Ability to identify and mitigate network vulnerabilities and explain how to avoid them to others.

Awareness of web application security and common vulnerabilities (e.g., OWASP Top Ten).

Strong analytical and problem-solving skills to investigate and remediate security incidents and anomalies.

Higher education or schooling industry experience

Fully Remote - must work East Coast hours

5-10 years of experience as a Windows Administrator or Desktop Security

CompTIA cert is a plus!

2+ years as a Cybersecurity Analyst

Identity & Access Management: implement identity management tools and support process improvements in diverse client environments

Possess baseline experience with tools/bodies of knowledge in chosen pillar(s)

Have knowledge of and experience employing general cybersecurity best-practices

Complete program-specific onboarding and soft skill trainings to boost confidence in field and jump-start cyber career

No more than 1 year of experience in cybersecurity field

Excellent written, oral, and collaborative communication skills

Identity & Access Management:implement identity management tools and support process improvements in diverse client environments

Possess baseline experience with tools/bodies of knowledge in chosen pillar(s)

Have knowledge of and experience employing general cybersecurity best-practices

Serve in a support role within chosen cybersecurity pillar (listed above). Responsibilities may include:

Complete program-specific onboarding and soft skill trainings to boost confidence in field and jump-start cyber career

No more than 1 year of experience in cybersecurity field

Apply risk management concepts to mitigate vulnerabilities in system security architectures

Education and Work Experience Requirements:

Manage multiple system packages throughout the ATO process

Experience supporting various system configurations such as standalone, local area networks (LANs), and wide area networks (WANs)

Experience with planning, designing, executing, and assessing discussion-based exercises

Conduct research and reference reading in obtaining technical information

~ Experience with cybersecurity tools, processes and methodologies and framework including regulatory requirements.

~ Manage security awareness training/testing modules and related messaging.

~ Experience with security protectionary measures to meet privacy compliance and data governance.

~ Working knowledge of ISO27001 or ISO 27701 or NIST Cybersecurity Framework or CIS 18 controls.

~ Extensive knowledge in two or more of the following Security tools:

~ Excellent verbal and written communication skills to allow effective interaction with all levels of the organization.

Assist in conducting investigations of information systems security violations and incidents, reporting as necessary to management.

Qualifications: Degree in a related IT discipline. Experience may substitute for degree.

Professional growth opportunities including paid education and certifications

Ideal candidate will have Sec+/A+/Network+ certification or equivalent. Must be willing to get Sec+ certified within 6 months of hiring.

Monitor and analyze Intrusion Detection Systems (IDS) and Security Information and Event Monitoring systems (SIEM) to identify security issues for remediation.

Recognize suspicious/malicious intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information.

Assists in administering vulnerability management program by conducting in-depth research and analysis on current threats and network vulnerabilities.

Administers, monitors, and reports on security information and event management and other log event sources.

1+ year hands-on experience performing SIEM event analysis.

Understanding of vulnerabilities to systems and software.

Experience with investigating common types of attacks; network packet analysis; log analysis and reviewing security events.

Excellent written and verbal communication skills

2 years of Project Management experience.

Bachelor’s Degree with 4+ years of hands-on technical experience.

CISSP and/or Network certifications are highly desirable.

Knowledge of Network Security tools, Azure & AWS Cloud Security enhancements.

Maintain IR tabletop and Risk Register documentation.

Monitor threats and remediate alerts.

2 years of Project Management experience.

Bachelor’s Degree with 4+ years of hands-on technical experience.

CISSP and/or Network certifications are highly desirable.

Knowledge of Network Security tools, Azure & AWS Cloud Security enhancements.

Maintain IR tabletop and Risk Register documentation.

Monitor threats and remediate alerts.

Reviewing log management systems and security information and event management (SIEM)

Participate in threat intelligence activities by monitoring and analyzing emerging threats and vulnerabilities.

Assist with security analysis of existing systems for compliance with security requirements.

Prior experience, boot camps, or internships in cybersecurity is a bonus.

Basic knowledge of at least one scripting language (Python, PowerShell, etc.).

Basic knowledge of incident response life cycle and steps.

Work with the Security Engineering team to perform tests and uncover network vulnerabilities

Experience with Endpoint Detection systems including Antivirus, Intrusion Protection: Sophos, McAfee, Crowdstrike, Palo Alto Firewalls

Experience in DLP to protect and secure Data

5-8 years experience in CyberSecurity

Must be local to Houston, TX*

Develop company-wide best practices for IT security

Software and data management tools such as R, Tableau, Python, SPSS, MySQL, Oracle or other similar tools

Develops, maintains, and manages dashboards and other BI solutions

Develops basic to moderate SQL queries to extract and manage data

Recognizes business requirements and devises solutions to meet data requirements

Work experience in an investigatory or law enforcement organization

Work experience with data visualization software products, e.g. Tableau, Power BI, and etc.

Experience dealing with technology such as mobile apps, computer SW, cloud system, electronic data (21 CFR Part 11 requirements).

Experience with clinical trial conduct and data Education background in computer and/or medical disciplines.

This individual will work under Good Clinical Practices, Good Clinical Data Management Practices, and other FDA regulations and guidelines.

Lead ongoing maintenance and enhancement of tools as a partner to the functional group(s), and management of the release schedule

Strong interpersonal skills for interacting with colleagues from different functions

This role must demonstrate solid oral and written communication skills and analytical/problem-solving skills at various levels of the organization.

Collaborate with other departmental efforts in continually improving and enforcing compliance with the Information Security Management System.

Research and identify vulnerabilities and threats to networks and information systems, recommending countermeasures or mitigating controls to reduce identified risk.

1-2+ years of cybersecurity experience.

Bachelor’s degree from accredited college or university with a strong academic background or equivalent work experience.

Familiarity with the working concepts, application of principals, and compliance requirements of the ISO-27001 series of standards.

Clear and concise written and verbal communication skills.

Organization and time management skills: the ability to work effectively within a project based, support based, and time sensitive environment.

Communication skills: the ability to communicate internally between teams such as Help Desk, Account Management, and Systems Architecture.

Broad knowledge: of computer software, networks, hardware, and computer languages.

Hardware Knowledge: the ability to understand the function of all deployed hardware in the client’s technology stack and slashBlue’s Catalog.

Lifetime learning mindset is a requirement

All other duties as assigned by manager

Alignment with product management and R&D project leaders to ensure security lifecycle planned within product development roadmaps

Develop solutions and recommendations to address security vulnerabilities

Creating and keeping a comprehensive understanding of global cybersecurity risks and market requirements, including regulations and standards

Anticipate and influencing current and future technologies and trends and leading internal knowledge sharing

Actively contributing to find, manage and reduce cybersecurity risks – both today and in the future

Candidates with 2-5 yrs of experience graduated with a degree in Computer Science, Cybersecurity, or a related field