Job Description:

• Information Security Analyst, Threat and Vulnerability Management
• This role will focus on Tactical Intelligence and Vulnerability Management.
• Threat and Vulnerability Management This person has experience in risk prioritization, navigating sources for identification and assessment of threats, and conducting cross-functional awareness for addressing risk.
• They will have experience assisting with vulnerability scanning and analysis, threat intelligence tools and working across a matrixed environment to assess indicators and triage risk.
• You will leverage a broad array of threat information. Additionally, you will proactively drive hunting and analysis and conduct technical research and analysis on emerging threats.
• You are comfortable providing fact-based reports to various levels of the organization within a fast-paced environment.
• You have previous tactical intelligence or vulnerability management experience, understand the fundamentals of reducing attack surfaces, and possess effective analytical skills.
• You will be accountable for setting your own work direction and completing tasks.

Key Responsibilities (Top Tasks & Outcomes for Which This Position Will be Accountable)

• Experience recognizing threats and conducting analysis on emerging threats and how they relate specifically to client
• Provide written analysis of findings to communicate potential risks and impact
• Experience in network security analysis and log-centric analysis (SIEM)
• Understanding and reporting of attacker Indicators of Compromise
• Monitoring intrusion detection systems and identifying host and network-based intrusions via intrusion detection technologies
• Provide attack surface management training and development
• Manage risk reporting and escalation to cross-functional teams in a cooperative manner

Other responsibilities as necessary

• Perform risk identification and triage with incident management
• Assist with additional projects as needed

Skills and Knowledge Required

• Strong communication and project management skills
• Requires a highly motivated, dynamic and customer-centric associate who thrives in a challenging and changing environment
• Working knowledge of crisis management communication, incident response and handling methodologies, NIST cybersecurity standards and FDA cybersecurity guidance
• Effective meeting management and group facilitation skills

Experience:

• 2-3 years’ experience in a security operations full-time role

Educational

• A minimum of a bachelor’s degree required. Ideal candidate will have a degree in computer science, communication, or other technical discipline.

Knowledge, Skills & Abilities

• In-depth knowledge of computer operating systems, including Windows, IoS and Linux a plus
• Experience with intelligence tools and applications
• Knowledge of Healthcare rubrics for vulnerability scoring and threat modelling
• Preferred Certifications: CERT-Certified Computer Security Incident Handler Certification, CISSP, HCISSP
• Detail-oriented with the ability to promptly assess documents for accuracy as well as consistency
• Strong interpersonal skills with the ability to influence others in a positive and effective manner
• Ability to work in a team environment
• Excellent communication skills; both oral and written