Information Security Analyst

Job Description

The Information Security Specialist protects an organization's digital assets and data. This role involves developing security policies, managing incidents, conducting forensic audits, and overseeing IT projects with security implications, ensuring systems are secure, compliant, and available.

Key Responsibilities:

• Information Security & Risk Management: Develop security programs, lead incident response and investigations, conduct forensic audits, monitor privileged accounts, and actively monitor threats to ensure system security.
• Project Management: Manage IT security projects, oversee hardware/software development, establish service levels, manage budgets, and ensure compliance with security guidelines.
• Technical Expertise & Consulting: Serve as a cybersecurity subject matter expert, monitor systems for intrusions, create RFI/RFP documents for security hardware/software, present performance reports, and propose solutions based on state-of-the-art security knowledge.

Qualifications and Experience:

• Education: University degree in a technology-related discipline (e.g., Computer Science or Computer Engineering) or equivalent experience. Project management training and IT Security certifications are assets.
• Required Experience: 7+ years in enterprise-level IT, with at least two years in information security. In-depth knowledge of IT architecture, security methodologies, application deployment, system auditing (e.g., PCIDSS, PA-DSS), drafting security standards, risk assessment, and control determination. Expertise in Unix-based server applications, scripting (Shell, Python), databases (SQL Server, MySQL), network/security analysis tools (intrusion detection/prevention), penetration testing/vulnerability scanning (Metasploit, Nessus), and securing virtualized environments.
• Skills: Excellent project management, team leadership, facilitation, communication, and problem-solving skills. Strong knowledge of security, data governance, risk management, and compliance best practices. Ability to work independently and collaboratively, learn new technologies, and adapt to shifting priorities.