Information Security Systems Analyst
Abacus Technologies · Birmingham, AL · 4 days ago
Information TechnologyFull-time
Key Responsibilities
- Security Awareness: Assist in developing and delivering training programs for clients and internal teams to enhance overall security awareness and best practices.
- Monitoring & Reporting: Configure and manage security monitoring tools, analyze logs, and produce detailed reports for internal and client use to maintain a robust security posture.
- Analyze and report security posture trends: Evaluate both organizational and system-specific data to identify vulnerabilities and assess the effectiveness of existing security controls.
- Apply and enforce security policies: Implement standards that align with security objectives, including least-privilege access controls and robust configuration/change management processes.
- Develop and maintain documentation: Establish comprehensive records of security operations, including fail-over and disaster recovery procedures, ensuring systems remain updated and compliant.
- Implement and refine security measures: Coordinate the deployment of cybersecurity tools and technologies to mitigate risks, safeguard system availability, and uphold confidentiality, integrity, authentication, and non-repudiation.
- Verify and update security documentation: Ensure system and application security design features are accurately captured, and that minimum security requirements are consistently applied.
- Provide cybersecurity recommendations: Advise leadership on threats and vulnerabilities with significant potential impact, offering prioritized guidance to protect critical assets.
- Coordinate improvements and adjustments: Recommend modifications or enhancements based on exercise results or environmental changes to maintain an optimal security posture.
Qualifications
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field.
- 0-2 years of experience in information security, network administration, or systems support.
- Proficiency with security monitoring and analysis tools (e.g., SIEM, IDS/IPS, vulnerability scanners).
- Knowledge of secure configurations for operating systems, databases, and network devices.
- Knowledge of compliance standards and frameworks (easily replaceable with "Knowledge of relevant compliance standards and frameworks" if not specified).
- Strong analytical, problem-solving, and communication skills with a consulting mindset.
- Relevant certifications such as CompTIA Security+, GSEC, CYSA+.