Analyst, Security Job Description
Analyst, Security Duties & Responsibilities
To write an effective analyst, security job description, begin by listing detailed duties, responsibilities and expectations. We have included analyst, security job description templates that you can modify and use.
Sample responsibilities for this position include:
Analyst, Security Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Analyst, Security
List any licenses or certifications required by the position: ITIL, CISSP, SANS, CISM, CCNP, CCNA, CCDP, CCDA, X.509, ISO
Education for Analyst, Security
Typically a job would require a certain level of education.
Employers hiring for the analyst, security job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Collage Degree in Computer Science, Education, Information Technology, Information Security, Technical, Information Systems, Engineering, Business, Management, Military
Skills for Analyst, Security
Desired skills for analyst, security include:
Desired experience for analyst, security includes:
Analyst, Security Examples
Analyst, Security Job Description
- Monitor the progress of all ongoing incidents and update the customer and internal groups when required
- Perform initial troubleshooting and diagnosis of all enterprise security device incidents
- Daily Incident Management responsibilities will include
- Candidate will have responsibility of taking ownership of assigned tasks, resolve tasks within assigned shift or correctly transition incident to oncoming shift if not resolved, track task to resolution
- Work with the various enterprise security device manufacturers to resolve complex incidents, replace defective hardware and receive software patches/fixes to resolve incidents
- Work with CSOC Tier 3 resources as required to resolve complex incidents
- Candidate should be able to utilize any and all available reference material to resolve incidents as required
- Candidate must have basic technical knowledge of enterprise security devices
- Required to give presentations via training sessions, web pages, or 1-on-1 training to peer engineers
- Position requires Change Management participation to include
- Committed and hardworking attitude
- Excellent interpersonal skills with strong oral and written
- A minimum of 3 years’ of experience as a security analyst or a system / network technician with significant exposure to security administration
- Working understanding of how software behaves and functions, particularly the interactions with operating systems and the network stack
- Experience analyzing commercial and internally developed tools and applications enterprise class technologies from a security standpoint
- Log management, parsing, and event correlation experience from all manner of endpoint technologies (network, system, security device)
Analyst, Security Job Description
- Operates formalized IT Security programs and processes such as Vulnerability Management, Third Party Assessments
- Improve internal investigation capabilities for responding to incidents by developing tools, scripting, and training
- Work with the security and compliance department of Digital Engineering to ensure proper practices are in place across pillar platforms in Power & Renewable Engineering
- Lead the preparation and execution of the security strategy of pillar platforms for Digital Engineering
- Work directly with functional business partners to understand the level of security required of data within a system and what is required to continue to keep that security in place
- Work directly with the technical architecture PLM team to understand the simplified version of how security measures are to be implemented
- Evaluate / produce business plans and operating practices, which improve quality, increase productivity and maintain an appropriate level of security across tools
- Maintain effective communication with customer, client, supplier and system’s management
- Security incident handling involves investigating issues to determine if there is a real security incident or a false positive, notifying customers as needed, and sending customers standardized emails specifying the steps they need to take to fix the problems
- Administers the security system to include the provisioning and de-provisioning of user badges, controlling and granting user access, auditing user identification and access levels, and monitoring of surveillance cameras and access points
- Performing triage of incoming issues (initial assessing the priority of the event, initial determination of incident to determine risk and damage or appropriate routing of security or privacy data request)
- Monitoring of alert and downstream dependencies health
- Provide incident response to end users for low complexity security incidents
- Notifying appropriate contact for security events and response
- Work assigned ticket queue
- A minimum of 3 years’ experience as a security analyst or a system / network technician with significant exposure to security administration
Analyst, Security Job Description
- Routinely review security incidents and other customer deliverables for adherence to the established procedures and guidelines
- Disposition daily requests from the business that require security review such as email with potentially malicious content, firewall access, access to blocked websites, remote access, external file transfers, privileged access
- Incident Management - Manage the assessment, containment, and response to information security incidents
- Introduction or enhancement of security controls and remediation of exposures
- Vulnerability Management - review current environment for vulnerability exposure and emerging threats
- Suspicious Activity Monitoring - Monitor and investigate potential Information Security breaches from various security systems
- Provide guidance as needed to IT and Business partners to ensure secure implementation of processes, systems and services
- Serve part-time as an embedded member of the Financial Systems Solutions (FSS) application services group to execute operations tasks, learn and document best practices for access administration
- Executes and monitors critical security controls to ensure operational effectiveness
- Perform all phases of security incident response processes and escalates necessary incidents to management
- Of CEH, OWASP, GIAC or OSCP certifications
- 20 years of experience related to physical security, including at least 15 years of experience in the evaluation, development, and design of state of the art physical security mitigations in accordance with ISC guidance
- Assist platforms on risk assessments, job safety analysis
- Apply continuous improvement methodologies to investigate incidents and accidents with multifunctional teams
- A Bachelor’s Degree in area of study relevant to this position is required
- U.S. secret security clearance preferred
Analyst, Security Job Description
- Track and facilitate open items remediation with multiple stakeholders
- Provide information related to available remediation guidance/resources
- Generate security reports
- Participate in developing related program/processes and procedures
- Maintain accurate and extensive documentation of results, using the Global Security Sharepoint system to document all actions in the case or security task, and all evidence collated
- Run the daily results hold reports and conduct investigations as appropriate, including collaboration with global security teams
- Keep informed of all new global security risks by attending global investigation meetings and discussing security trends with the global security teams or reading cases on sharepoint
- Actively participate and assist in managing organizational information security awareness and communications efforts
- Assist in developing and managing various information security policies, standards, and guidance
- Maintain current knowledge of security vulnerabilities, threats, and industry best practices (both within and external to the healthcare industry)
- Must have basic understanding of Enterprise Management tools
- Basic understanding of networking technologies, Cisco routers and switches
- Ideal candidate will have strong verbal and written communication skills and have the ability to work in a team environment
- Must enjoy working in a fast paced multi-faceted environment
- Must have basic Linux/Unix skills
- At least 2 years of experience in working with TCP/IP, Ethernet networks and troubleshooting tools (tcpdump, trace)
Analyst, Security Job Description
- Perform daily, weekly & monthly maintenance duties to maintain system integrity & availability, providing an efficient & optimised information security infrastructure
- Partners with other Technology Teammembers to provide advice or solutions within his or her area of expertise
- Stays informed about current developments within his or her expertise
- Support incident management processes and security monitoring alerts in preventing internal / external hackers from compromising Client's data and assets
- Develop and maintain operating guidelines and procedures in support of Client's policies, standards and guidelines
- Work with members of all BU and Client staff to support the enterprise approach to security
- Medium-term analysis of event feeds, malware samples, and incident data for evidence of malicious or anomalous activity, or to better understand adversary TTPs
- Basic malware analysis (e.g., reverse engineering/static analysis, behavioral/dynamic analysis) to determine initial infection vector, behavior, and the extent of an intrusion in support of timely incident response
- Various tasks in lab environment (reimaging, configuration, network connection)
- Work with Tier 3 resources as required to resolve complex incidents
- F5 Essential/Advance Certifications
- Proxy Certifications (BlueCoat, Redline, NetCache)
- Cisco Security certifications
- Cisco Network certifications
- Palo Alto certifications
- Fortinet certifications