Security Analyst - Intermediate
Intellibee Inc · Columbia, SC · 1 wk ago
Information TechnologyFull-time
Key Responsibilities/Job Functions
- Maintain and administer Data Loss Prevention (DLP) policies and controls.
- Investigate potential data loss, data exposure, and unauthorized access incidents.
- Support Data Security Posture Management (DSPM) initiatives related to AI and Copilot.
- Review the movement, storage, and sharing of sensitive information.
- Affirm data classification and data handling requirements.
- Engage in data governance initiatives and support data owners and stewards.
- Review and triage security alerts from DLP, Insider Risk Management, DSPM, and other security platforms.
- Investigate suspicious activity involving sensitive information.
- Document findings and maintain investigation records.
- Escalate incidents according to agency incident response procedures.
- Assist with containment, recovery, and post-incident activities.
- Monitor Insider Risk Management alerts and cases.
- Analyze user activity associated with potential policy violations.
- Conduct investigations while maintaining confidentiality and proper chain of evidence.
- Recommend corrective actions and risk mitigation strategies.
- Participate in third-party and vendor security assessments.
- Review vendor security documentation, audit reports, and questionnaires.
- Identify cybersecurity risks associated with third-party services.
- Afford remediation efforts and risk acceptance decisions.
- Support cybersecurity audits and compliance reviews.
- Collect and analyze evidence for regulatory and policy requirements.
- Afford risk assessments and control validation activities.
- Maintain documentation supporting compliance efforts.
- Work with technical and non-technical staff to address security concerns.
- Prepare reports, metrics, and presentations regarding security risks and trends.
- Participate in cybersecurity awareness and training initiatives.
- Recommend improvements to security policies, procedures, and controls.
Required Education and/or Certifications
- A bachelor’s degree in cybersecurity, information technology, computer science, or a related field is required; equivalent experience may be considered.
- A foundational security certification such as CompTIA Security+ or GIAC Security Essentials (GSEC) is required.
- PREFERRED certifications include Microsoft SC100, SC200, CEH, or an Associate level CISSP.