Job Closed
This listing is no longer active.
As a leader in environmental solutions, recycling & waste, we partner with customers to create a more sustainable world.
Senior Information Security Analyst
Location
United States
Posted
128 days ago
Salary
$99.8K - $137.3K / year
Seniority
Senior
Job Description
Senior Information Security Analyst
Republic Services
• Acts as the escalation point for reviewing security events and incidents from a wide variety of cybersecurity technologies such as endpoint security tools, network security tools, etc. • Performs event correlation using information gathered from a variety of sources within the enterprise to continuously improve detection • Provides support in obtaining and maintaining compliance with NIST standards • Creates and/or maintains incident response documentation including the Incident Response Plan, Incident Response Playbooks, etc. • Partners with various stakeholders across the business to improve overall security posture • Coordinates end-to-end incident response activities related to a wide variety of security risks and threats, including but not limited to, ransomware, system compromise, account takeover, phishing, etc. • Implements security controls and processes to protect digital assets and conduct routine security audits to ensure compliance • Maintains active Threat Intelligence program, integrate Threat Intel with detection and monitoring to proactively block malicious actors • Proactively searches for advanced threats that may evade existing security solutions • Uses threat intelligence to analyze network, endpoint, and application data • Creates and adjusts threat-hunting scripts and queries to improve detection • Contributes to knowledge base and procedural documentation • Mentors less experienced analysts and provide guidance during critical incidents and investigations • Performs other job-related duties as assigned or apparent • Implementing and maintaining security controls in IaaS environments • Driving optimization of Cloud specific security coverage • Developing and maintaining Cloud specific security standards and procedures
Job Requirements
- 3+ years of focused information security experience in cloud security for IaaS environments with an emphasis on AWS
- Passion for customer service, problem solving, investigation, and information security
- Experience with Windows, Linux, MacOS (workstations and servers) including security best practices
- Experience with Network and Firewall concepts
- Experience with Palo Alto firewalls
- Experience with Security tools such as SIEM, EDR, DLP, Email Security, and Threat Intel Platforms
- Working knowledge of cloud security configurations and controls, identity, and access management (IAM), cryptography / key Management, and vulnerability management
- Relevant industry certifications (CISSP, Security +, CySA +, CASP +, Azure or AWS security certifications) preferred
- Strong knowledge of CIS & NIST frameworks
- Strong communication skills
- Offensive security or Red Team experience
Benefits
- Comprehensive medical benefits coverage
- Dental plans and vision coverage
- Health care and dependent care spending accounts
- Short- and long-term disability
- Life insurance and accidental death & dismemberment insurance
- Employee and Family Assistance Program (EAP)
- Employee discount programs
- Retirement plan with a generous company match
- Employee Stock Purchase Plan (ESPP)
- Paid Time Off (PTO)
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Information Security Compliance Analyst
eHealth, Inc.Connecting millions to quality, affordable health insurance
• Assisting with internal and external audit engagements (SOC2 Type II, HITRUST, PCIDSS, SOX, GuardianSphere etc.) • Gather control evidence to ensure the information provided fulfills the requirements • Organize audit evidence and manage the control and process libraries • Assist the business to assess, document and remediate risks identified during the assessment • Contributing to eHealth’s compliance maturity: • Work with the business to implement sound security controls aligned with the security policies and standards and identify control gaps • Develop metrics to report to management • Assisting with Security awareness training and phishing campaign exercises • Working with business partners to respond to carrier security questionnaires • Evaluating new vendors for security concerns • Assess the status of projects to identify and implement appropriate corrective measures to resolve security concerns as they arise • Assists in the development and ongoing refinement of enterprise AI policies, standards, and guardrails, embedding responsible and compliant AI use into core governance processes, risk assessments, and control frameworks
Cybersecurity Analyst
PurpleBox, Inc.Secure Cloud Solutions Consulting and Managed Services PurpleBox Security Services include assessment, design, implementation and management of information security, compliance, and technical security solutions. - Compliance Assessment and Reporting - Risk Assessment - Vulnerability Assessment and Penetration Testing (VA/PT) - Security Policy and Controls - Vulnerability Scanning Services (PCI ASV, OS, Network, Database, Web Application) - SCADA and Industrial Control Systems Security - Security Configuration Baselines - Security Monitoring and Threat Intelligence Services - Application Security Testing Services - Managed Web Application Firewall PurpleBox is an Amazon Web Services (AWS) Partner and helps clients with their Cloud Transformation and Cloud Migration needs: - Cloud Trasformation Strategy - Current State Assessment - Migration Project Management - Cloud Architecture - Cloud Security Architecture - Security and Compliance in the Cloud - Cloud Cost Optimization PurpleBox Cloud Services are focused on providing its customers with the most complete and cost effective cloud solutions. From scoping and designing new environments, to decoupling and migrating complex existing platforms, our experienced team of certified professionals has a proven track record of delivery excellence.
Company Description PurpleBox is the leading technology consulting company that focuses on solving business problems utilizing new technologies. We provide Cybersecurity, Cloud Computing, and DevOps consulting services that help businesses manage their business risk more effectively. Job Description Multiple Cybersecurity Analyst and Engineer Positions are available. Entry Level to Mid & Senior Level Internship, Part-Time, Full-Time We are seeking to hire multiple Cybersecurity Analysts and Engineers to work with our customers in various security testing, architecture, implementation, support, and compliance projects. As part PurpleBox Security Services team, you will be working on challenging projects. Responsibilities: As a Subject Matter Expert in specific cybersecurity technologies and domains, you will provide engineering, architecture design, assessment, and technical support for projects As part of managed security services, you will run daily processes and tools for managing cybersecurity : Vulnerability Management, End Point Protection, Security Logging, Monitoring, and Incident Response, Security Compliance, Privacy, Security Awareness Training, and more... As part of security testing services, performing penetration testing, ethical hacking, and security assessments against Networks, Web Applications, API, Mobile Applications, IoT Devices, and Public Cloud Infrastructure Collaborate in the creation of technical collateral (blog posts, whitepapers, etc...) and provide training in your area of expertise. Give back to the community by volunteering at technical events, speaking at technical conferences, organizing local meetups, and participating in case studies. Write, review, and edit reports, use cases, and system documentation. Qualifications
Information Security Analyst – HIPAA, NIST, CMS, IRS
Zirlen Technologies Inc.,A leading IT Services Company - Delivering what business demands
• Provide expertise in security frameworks and compliance measures • Work with security teams in relevant domains • Communicate effectively with stakeholders • Organize and manage project tasks • Support audit and compliance measures
• Administer and manage Identity and Access Management (IAM) using Microsoft Entra ID. • Manage user lifecycle processes (onboarding, role changes, offboarding), access provisioning and role assignments. • Configure and maintain MFA, Conditional Access, RBAC and Zero Trust controls. • Conduct regular access reviews and support audit and compliance requirements. • Provide L2/L3 support for incidents related to identity, access and cloud. • Operate and manage security tickets, incidents and service requests using Jira. • Monitor, analyze and respond to security alerts related to identity and access. • Administer and support endpoint security solutions. • Collaborate with internal teams on incident response, remediation and security improvements. • Design and implement automation for IAM and security processes to reduce manual tasks. • Contribute to documentation of procedures, guides and operational processes. • Support and improve the cloud security posture in Azure.
