Information Security Analyst

  About the Job   The Information Security Analyst (ISA) will be managed by the Lead Analyst, and this role will be responsible for the day-to-day operations of threat monitoring, vulnerability management, and security control administration for a subset of the organization.    The ISA will perform regular predefined audits of various IT components as defined by IntouchCX clients and the Information Security Operations Center. The role will be part of a team and is expected to participate in regular team and client meetings to present audit findings and discuss ways to better organizational security.     As an Information Security Analyst, You Will…   Perform daily, weekly, and monthly security-related audits following standard operating procedures Respond to security incidents and author security incident reports by performing incident investigation activities with various groups Communicate and present audit findings and security compliance status to clients Perform security analysis on alerts, logs, and events generated from various system components and controls throughout the environment Assist in responding to security threats and incidents, developing incident reports, and submitting to clients Audit camera functionality and employee badging management and access Be in charge of the administration and use of various technical security controls: Log collection and correlation (SIEM) Endpoint (Antivirus/EDR, FIM, Log IDS) Vulnerability scanning and identification Data loss prevention Develop, implement, and manage tools and processes to aid in threat monitoring and other security-related activities Document and communicate security issues to various organizational units and clients Work with the security team to identify methods to bolster threat detection and prevention based on discovered issues     As an Information Security Analyst, You Have…   College diploma in Information Security with 3 years comparable work experience Security certifications such as CISSP, CISM, and related GIAC certifications are considered as assets Professional experience in performing security analysis in a corporate environment and communicating with various business units MacOS knowledge and proficiency MacOS shell environment use is considered an asset Project management certification or training is considered an asset Clear written and vocal communication skills Ability to translate security and compliance frameworks into operational repeatable tasks The ability to work in a fast-paced and time-sensitive environment while maintaining quality, timelines, and expectations  Excellent analytical, critical thinking, and problem-solving skills The ability to research, source as well as compile and summarize information  Superior attention to detail Self-motivated and goal-oriented