JPC Partners is looking for an Information Security Analyst. This position is responsible for operating information security systems and processes such as perimeter defense, endpoint security, incident response, access, authentication, monitoring and other systems focused on the confidentiality, availability and integrity of corporate systems and data. Job Responsibilities:
Conducts network monitoring and intrusion detection analysis using various Computer Network Defense (CND) tools, such as Intrusion Detection/Prevention Systems (IDS/IPS), Firewalls, SIEM, NAC, Vulnerability Management tools, and Host Based Security System (HBSS).
Reviews alerts and data from sensors and documents formal, technical incident reports.
Assist project teams and information owners in identifying security control objectives and appropriate security controls for protecting Company information and assets
Perform detailed technical testing of security controls and produces detailed written reports of the test results.
Recommends security controls and/or corrective actions for mitigating technical and business risk
Perform periodic penetration testing of all applications and network elements for adherence to company security policies.
Automate workflows to perform security event monitoring and incident management. Automate the detection of incidents based on available forensic data.
Assist in investigations and remediation or mitigating solutions.
Analyze log data and alerts, interpret and correlate events, create advanced search patterns to identify threats.
Participate in weekly incident on-call rotation
Provides support for security tools, controls and processes.
Supports audit and compliance needs.
Researches emerging threats and vulnerabilities to aid in the identification of network incidents
Analyzes data from threat and vulnerability feeds and analyzes data for applicability to the organization
Identifies and resolves false positive findings in assessment results
Generates reports on assessment findings and summarizes to facilitate remediation tasks
Automate workflows to perform security event monitoring and incident management. Automate the detection of incidents based on available forensic data.
Ensures compliance with all applicable configuration standards.
Knowledge, Skills and Abilities:
Strong analytical and problem-solving abilities.
Ability to quickly process and synthesize highly complex information.
Demonstrated ability to perform in high-pressure situations.
Excellent verbal and written communication skills.
Education and Training:
Six (6) plus years of experience in technical cyber security or information technology role directly managing or operating cyber security tools.
Technical cyber security certifications like Security +, CCSP, CISSP or other vendor specific security certifications.
Experience with cloud technologies like AWS, Azure.
Practical knowledge of standard security tools and technologies like endpoint protection, boundary protection, encryption, and other security suites.