IT Security Analyst
Cyber Focus AI · United States · Today
RemoteRemoteAnalystFull-time
About the role
Cyber Focus AII seeks to connect senior information security engineers with opportunities in SASE, SWG, or Data Loss Prevention (DLP) security tools. This role involves supporting and maintaining security platforms, responding to alerts, and implementing proactive measures.
Responsibilities
- Provide SME-level support and establish operational readiness for on-premises and cloud security platforms.
- Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, networks, databases, and web-based communications and applications.
- Respond to alerts from information security tools and implement proactive procedures to maximize service health and performance.
- Report, investigate, and resolve security incidents.
- Recommend, develop, and implement change requests to enhance security posture and improve performance.
- Research security trends, new methods, and techniques to preemptively eliminate the possibility of system compromise.
Requirements
- Undergraduate degree or equivalent work experience.
- Extensive experience providing SME-level support in large, highly dynamic enterprise environments.
- Leads troubleshooting efforts in complex issues involving multiple platforms and network flows.
- Operates well under pressure and urgent circumstances.
- Self-reliant and diligent in follow-through for assigned tasks.
- Pro-active and effective in cross-team collaboration.
- Ability to work with a geographically dispersed team.
- Moderate technical experience on one or more of the following security platforms:
- SASE (CASB/SWG/VPN)
- Web Proxy
- DLP
- Extensive knowledge of networking concepts, software-defined networking principles, or cloud networking.
- Demonstrated effective communication skills.
- Ability to write for technical and non-technical audiences, across a variety of platforms including email, chat, Standard Operation Procedures, and knowledgebase articles.
- Ability to verbally communicate to wide array of audiences including non-technical customers/users, technical resources, and to leadership across all levels.
Preferred Qualifications
- Moderate level experience with SASE (CASB/SWG/VPN).
- Migrating on-premises security stack to a cloud provided solution.
- Moderate experience with DLP and data protection platforms, including one or more of the below capabilities/functions:
- Interpreting requirements from stakeholders into specific detection logic
- Developing advanced and accurate detection logic
- Exact Data Matching across multiple vendor solutions
- Data classification and tagging
- General experience with web proxy platforms in the form of daily operations, updates to the rules, and configuration of the platform.
- General experience with Identity and Access Management (IAM) topics as it relates to both cloud and on-premises enterprise technology, and the relationship between the architectures especially relating to Azure.
- General experience focusing on daily operations, support, and configuration with one or more of the below platforms:
- NextGen Firewall
- IPS
- Advanced Malware Protection
- General experience executing Executive Level presentations.
- General experience with advanced Excel reports and pivot charts.
- Understanding/Following ITIL frameworks for Incident, Change, and Problem Management.
- Analyze performance, identify areas of concern, and formulate action plans.
- Effective clerical/note-taking skills.
Pay
Competitive compensation package based on experience and qualifications.
Schedule
Full-time position with flexible working hours.