Information Security Analyst – Compliance & Risk Management
Description
Company Overview:
When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there’s really only one: Zones – First Choice for IT.TM
Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones, a Minority Business Enterprise (MBE) in business for over 35 years, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, leveraging a robust portfolio, and utilizing the highest certification levels from key partners, including Microsoft, Apple, Cisco, Lenovo, Adobe, and more, Zones has mastered the science of building digital infrastructures that change the way business does business ensuring whatever they need, they can Consider IT Done. Follow Zones, LLC on Twitter @Zones, and LinkedIn and Facebook.
Position Overview:
The Security Analyst - Level III will be responsible for responding to incident escalations from the Zones SOC team. The escalations will need to be evaluated and the appropriate response action sent forward to the appropriate team. The role will also be responsible for developing runbooks and SOPs to shorten time to resolution and for providing guidance to the SOC on best practices and recommended configurations/responses.
What you’ll do as the Security Analyst - Level III:
Employees employed in the role of Security Analyst - Level III shall be required to apply their independent mind and demonstrate intellectual abilities in their decision-making.
The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
The Security Analyst - Level III will also lead efforts to optimize vulnerability management and response/remediation for newly discovered vulnerabilities. Additional functions will be to work with peers on the security architecture team as well as others in the systems and networking teams to respond to events and escalations as well as working to ensure the company's security posture and processes are improving.
What you will bring to the team:
Educational Requirements:
• Bachelor's Degree in Computer Science, Management Information Systems, or related technical field.
• Creditable Experience in Lieu of Education: Equivalent technical training and/or IT certifications required as related to IT Security/IAM.
• Provide direction and governance to the Zones SOC team on incidents and events as well as advise them on operating procedures and process automation
• Optimize the vulnerability detection efforts for the organization and initiate mitigation tickets for the appropriate teams
• Track and follow up on the mitigation efforts and escalate as needed to ensure that the corporation's security is not compromised
• Assist in planning and implementing an identity governance and entitlement management strategy
• Assist in analyzing and defining security requirements for new technologies or development efforts
• Participate in assessments of Software as a Service (SaaS) products for security compliance
• Monitor system logs, SIEM tools, and other security tools for unusual or suspicious activity
• Monitor internal control systems to ensure appropriate information access levels and security is maintained
• Implement or coordinate remediation required by policies, standards, reviews, and audits, documenting exceptions as necessary
• Conduct audits and reviews of endpoint, network, and system security controls and manage remediation efforts
• Conduct risk analysis, threat, and vulnerability assessments
• Perform other duties as assigned
Knowledge & Experience:
• A minimum of 3 years of experience in information security, cybersecurity, compliance, vulnerability management, or related security fields (5+ years of experience preferred)
• Strong technical skills to implement Identity and Access Management services with hands on experience
• Azure related certification such as AZ 104 or SC-300: Microsoft Identity and Access Administrator
• Experience in process documentation and improvement
• Information security related certificate such as CISSP, CCNP, CySA+, Security+, SANs
• Knowledge and experience with the M365 security tools such as Defender and Sentinel
• Experience with industry standards such as HIPPA, ISO 27001, ISO 31000, NIST
• Knowledge and experience with identity and cloud security technologies
• Strong technical knowledge of end point security systems
• Strong understanding of IP, TCP/IP, and other network administration protocols.
• Familiarity with Windows and Linux operating systems
• Experience working on large-scale projects
• Experience scripting using:
- PowerShell
- Azure Cloud shell
Zones offers a comprehensive Benefits package
At Zones, we are committed to fostering an inclusive and diverse workplace. We provide comprehensive benefits to support our employees, including health insurance coverage for parents, spouse, and children, life insurance, pension fund scheme, EOBI, and on the house free quality food, gym, and much more. We embrace equal employment opportunity, free from discrimination based on various characteristics, and offer an exciting career immersed in an inventive, collaborative culture.
If you are enthusiastic about working on the cutting edge of IT innovation, sales, engineering, and operations, Zones is the perfect opportunity for you.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status or on the basis of disability.
Shift Timings: 8:00 P.M to 5:00 A.M (Pk time)
#LI-Remote #LI-SA2