Information Security Analyst

- Proficient in Network Security: I am looking for someone who has a solid understanding and experience in secure configuration, auditing, and monitoring of network devices. You should have the capability to implement security controls and suggest corrective actions in alignment with cybersecurity policies and standards. - Expertise in Operating Systems Security: I need an individual with a strong background in Operating System security for servers, IoT, and mobile operating systems. You should be able to identify vulnerabilities and recommend actions that comply with cybersecurity policies and standards. - Experience with Security Tools and Platforms: I expect you to be familiar with managing SOC/SIEM platforms for real-time threat detection, and adept in using vulnerability scanners and endpoint protection tools (e.g., MDR/DR solutions). - Knowledge in Threat Detection and Incident Response: It is essential that you have experience in conducting threat response actions and incident response investigations, along with expertise in system hardening and patch management. - Proficient in Access Control Management: A strong grasp of IAM, MFA, SSO, and Zero Trust principles is required. Experience with Active Directory focusing on RBAC and least-privilege access is also necessary. - Understanding of Cloud Security: I seek someone with a firm understanding of securing AWS and Azure workloads utilizing cloud-native tools and SaaS posture management, alongside the ability to implement cloud-based security controls. - Experience in Risk Assessment and Governance: I am looking for someone who has performed risk analysis using NIST 800-53, NIST CSF, HIPAA, CJIS, and PCI frameworks, with the ability to develop mitigation strategies and implement security controls for regulatory compliance.