Jobs · Information Technology · Colorado

Security Analyst

Vertilocity · Englewood, CO · 3 wk ago
Information TechnologyFull-time

Job Summary

We are seeking a dynamic and experienced Security Analyst to join our team. The ideal candidate will possess a strong background in IT consulting, with expertise in analyzing business processes, identifying software solutions, and implementing technology-driven strategies to meet client needs. The Security Analyst will be responsible for protecting an organization’s computer systems, networks, and data from cyber threats. They monitor systems for security breaches, investigate violations, implement security measures, and respond to incidents.

Qualifications

  • Bachelor’s degree in computer science, Information Technology, or related field preferred.
  • 2+ years of experience in cybersecurity or a related field.
  • Experience with Microsoft Windows Server, Microsoft 365, Microsoft Azure Platform, Barracuda Email Defense, Fortinet, SonicWall, Axcient 365, Datto BCDR, Arctic Wolf, Sentinel One, ThreatLocker, Huntress, Perimeter 81, Kaseya Dark Web ID, Cisco DUO, Cisco Umbrella, RapidFire Tools: Network Detective, Compliance Manager GRC, VulScan.
  • Strong problem-solving, and decision-making abilities.
  • Familiarity with threat intelligence platforms and incident response.
  • Excellent communication skills to articulate security issues to both technical and non-technical audiences.
  • Ability to work in a team and collaborate with various departments.

Responsibilities

  • Incident Response: Sentinel One/Huntress/Defender for Endpoint Monitoring and Response.
  • Email Account takeover monitoring and response (Barracuda/M365).
  • SIM Alert Response and coordination with SOC team.
  • ThreatLocker - Required Application blocked. Incident investigation (M365/Windows Servers/Firewalls, etc).
  • Incident related client communication.
  • Maintenance/Management Firewall Security Configuration And Review.
  • Create and maintain Best Practices Documentation.
  • Firewall Firmware updating.
  • Vulnerability Scanning - Review and response. VolScan, Sentinel One, Arctic Wolf.
  • Developing response plan and prioritizing.
  • Internal and client reporting and follow-up.
  • KnowBe4: Managing training and phishing campaigns for existing clients.
  • Onboarding new clients and setting up campaigns.
  • Managing groups and appropriate Training for Very Targeted Individuals.
  • ThreatLocker - Managing Approved Applications and groups.
  • Microsoft Windows and Microsoft 365.
  • Security Best Practices Review.
  • Active Directory.
  • Intune/Endpoint.
  • M365 Security.
  • M365 Purview (Compliance).
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.
  • Supply Chain Evaluation.
  • Privacy Policy Evaluation.
  • Employee Training and Attestation management.
  • Create and Maintain documentation on best practices and recommended baseline configurations.
  • Compliance Management of Compliance Portals.
  • Risk Assessment.
  • Policy and Procedure Review.
  • Pen Test Review.
  • Network Assessment.
  • Controls assessment.
  • Assessment (Gap Analysis).
  • Evidence gathering.
  • Developing a Plan of Action.
  • Written evaluation of Risks.
  • Evaluation of potential impact of mitigations.
  • Prioritization of mitigations based on Risk, cost, time to implement, potential impact, etc.
  • Presentation of PoA to Client Executives and Technical Decision Makers.
  • Vendor Technical Review.
  • Risk Evaluation.

Similar jobs

Security Analyst

VertilocityHolmdel, NJ· 3 wk ago
Information Technologyapply on hbkcpa.wd503.myworkdayjobs.com

Security Analyst

VertilocityBridgeville, PA· 3 wk ago
Information Technologyapply on hbkcpa.wd503.myworkdayjobs.com

Security Analyst

Upwind SecuritySan Francisco, CA· 6 days ago
Information Technologyapply on comeet.com

Security Analyst

Upwind SecurityBoston, MA· 6 days ago
Information Technologyapply on comeet.com

Security Analyst

HighCloud SolutionsSt Paul, MN· 6 days ago
RemoteInformation Technologyapply on highcloud.oorwin.ai

Security Analyst

Metro Vein CentersWest Bloomfield Township, MI· 3 wk ago
Information Technology$75k/yrapply on grnh.se