Lakeside Software logo
Lakeside Software

Lakeside Software helps IT teams monitor and optimize environments by focusing on the quantified end-user experience.

IT Security Analyst

Security AnalystSecurity AnalystFull TimeRemoteMid LevelTeam 201-500H1B No SponsorCompany SiteLinkedIn

Location

India

Posted

2 days ago

Salary

0

Seniority

Mid Level

Job Description

IT Security Analyst

Lakeside Software

Role Description Lakeside Software is looking for a skilled Cybersecurity Analyst to strengthen our defenses and safeguard the integrity, confidentiality, and availability of our Azure cloud services and information systems. This role calls for a proactive, detail-oriented professional with a solid understanding of current cybersecurity threats and the ability to communicate clearly with stakeholders at all levels. You'll join a collaborative, forward-thinking team committed to protecting what matters most. What You'll Do - Conduct comprehensive security assessments to identify potential vulnerabilities in our Azure systems, networks, and applications. - Use Endpoint Device Management (EDM) solutions to remediate identified vulnerabilities through automated patch deployment. - Collaborate with engineering teams to address vulnerabilities that fall outside the scope of automated patching. - Utilize industry standard tools and methodologies to perform assessments and identify security gaps. - Execute regular vulnerability scans to uncover security weaknesses and ensure compliance with security policies and regulations. - Analyze scan results, prioritize vulnerabilities based on risk, and recommend corrective actions. - Monitor and review Indicators of Compromise (IOC) to detect and respond to potential security incidents. - Analyze threat intelligence and perform investigations to prevent or mitigate security breaches. - Collaborate with internal teams and external partners to contain and resolve security threats promptly. - Perform routine review of alerts and security logs to identify anomalous activity, escalate confirmed incidents, and maintain documentation of findings. - Conduct and document periodic user access reviews across systems and applications to support least-privilege controls and satisfy audit requirements. - Assist in responding to customer and prospect security questionnaires, including DDQs and vendor risk assessments, by accurately documenting Lakeside’s controls, certifications, and security practices in alignment with our security program and approved disclosure posture. - Performing special projects as required. Qualifications - Bachelor's degree in computer science or a related field, or equivalent experience. - 3+ years of experience in information security. - Strong technical documentation skills. - Hands-on experience with vulnerability scanning tools such as Tenable Nessus, Snyk Burpsuite, or equivalent. - Solid knowledge of cybersecurity frameworks and standards, including SOC 2, ISO 27001, and CIS. - Familiarity with information security features across Microsoft Windows, Linux, and macOS. - Experience managing Entra ID, EDM - Intune and Jamf, and EDR solutions. - Working knowledge of ITIL and NIST best practices. - Experience with threat detection and incident response, including analyzing and responding to IOCs. - Experience configuring and operating security tools including SIEM, WAF, EDR, and SASE platforms. Requirements - Knowledge of Azure Cloud Services. - Cloud security. Benefits - 20 Days Annual Leave. - 45 Days Annual Leave Maximum. - 4 Festival Days Named. - 8 Festival Days Select. - 12 Days Sick Leave. - 100% Paid Medical Insurance & GPA. - Wellness Programme. - 3x CTC Group Life Insurance. - Pension. - Employee Referral Scheme.

Related Job Pages

More Security Analyst Jobs

Full TimeRemoteTeam 11-50Since 1963H1B No Sponsor

• Gestão e acompanhamento de vulnerabilidades; • Monitoramento e investigação de eventos de segurança; • Apoio na operação e evolução de soluções SIEM; • Gestão de identidades e acessos (IAM); • Apoio na implementação de controles de segurança em ambientes Cloud AWS; • Participação em análises e tratamento de incidentes de segurança; • Elaboração e manutenção de políticas, procedimentos e controles de segurança; • Apoio às iniciativas relacionadas à LGPD e boas práticas de governança; • Interação com times técnicos para evolução contínua da postura de segurança da organização.

Brazil
Full TimeRemoteTeam 51-200Since 2020H1B No Sponsor

• Monitor enterprise infrastructure, investigate security events, manage vulnerabilities, and support incident response activities. • Develop and fine-tune detection rules for XDR platforms, analyse security alerts, coordinate remediation efforts, and collaborate with engineering teams to integrate Threat Modeling into the Software Development Lifecycle (SDLC). • Contribute to security guidelines, automate operational processes through scripting, and build integrations between security platforms using Infrastructure as Code (IaC) principles and APIs.

Portugal
€2.3K - €2.9K / month
Sprocket Security logo

Offensive Security Analyst

Sprocket Security

The Expert-Driven Offensive Security Platform. Continuously validate your security posture all year long.

Full TimeRemoteTeam 11-50H1B No Sponsor

• Triage, validate, and QA findings surfaced by Sprocket's automation. Reproduce, confirm true positives, and eliminate false positives before anything reaches a client. • Author and refine findings to client-ready quality in the Sprocket voice, and publish them through the platform. • Calibrate severity to real business impact against Sprocket's standards, judging real-world impact over theoretical. • Handle roughly 90% of findings independently and make accurate handle-versus-escalate decisions using the platform workflow, escalating the hard 10% to an Adversarial Engineer with full context attached. • Feed pattern-level signal back to R&D and the Adversarial Engineering team to tune attack automations and cut false positives at the source. You'll be one of the tightest feedback loops we have into R&D. • Log validation notes, flag false-positive patterns, and contribute to the knowledge base. • Script away repetitive validation steps wherever they appear. • Partner with your fellow R&D team members and the Service Delivery team on the automation feedback loop and client-experience improvements. • Seek to programmatically enhance automation pipeline with new or updated capabilities when triage is complete and capacity allows, pairing with an Adversarial Engineer as needed. • Attend daily standups, weekly 1:1s, monthly company calls, and all-hands.

United States

Role Description The Information Security Analyst I will support day-to-day security operations, event/incident investigation, security control assessment, data analysis and reporting, and other infosec-related activities. The analyst will work with the Project team as well as Helpdesk Support team to mitigate risks and vulnerabilities and create documentation or reports regarding infosec activity and incidents. - Must be authorized to work in the U.S. - This is a full-time, direct hire position. - Schedule: Friday, Saturday, Sunday, Monday, 7:00 AM - 6:00 PM (ET) - While working from home, employees must have a reliable internet connection and must work in an environment free of noise and distraction. Essential Duties and Responsibilities - Perform penetration testing; along with internal and external scanning, assess report and escalate to appropriate team and engineers. - Resolve any computers with missing Hard Drive Encryption. - Resolve and report out any violations of Office365 hardening security procedures; this includes but not limited to bypassing multi-factor authentication, device compliance policy, conditional access. - Resolve any computers and servers with missing vulnerability patch and Windows and third-party updates. - Responds to security incidents (Helpdesk Support), conducts forensic investigations and targets reviews of suspect areas as well as develop action plans to address root causes of security-related problems. - Collaborates on projects to ensure that security issues are addressed throughout the project life cycle. - Reports to Risk Manager concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance. - Provides responsive support for problems found during normal working hours as well as outside normal working hours as needed. Qualifications - 1-2+ years of security experience working with Endpoint Security, Intrusion Prevention, and Firewall security. - 2+ years of experience working for an MSP/MSSP or SOC (Security Operations Center). - 2+ years of Incident Response experience. - Proven work experience as a system security engineer or information security engineer. - Experience in building and maintaining security systems. - Detailed technical knowledge of database and operating system security. - Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc. - Experience with network security and networking technologies and with system, security, and network monitoring tools. - Thorough understanding of the latest security principles, techniques, and protocols. - Problem solving skills and ability to work under pressure. Development Expectations - Ethical Hacker - Preferred / Development Plan - Associate of (ISC)² - Preferred / Development Plan - CISSP (Certified Information Systems Security Professional) – Preferred / Development Plan - CCNP Security – Preferred / Development Plan Benefits - Insurance Coverage: Health, Dental, Vision, Life/AD&D, Short-Term Disability, Long-Term Disability, Accident, Hospital Indemnity, Critical Illness. - Paid Time Off (Vacation, Holidays, Birthday). - 401k Retirement Plan with Company Match. - Flexible Spending Account, Health Savings Account. - Peer-to-Peer Recognition. - Learning and Development. - Pet Insurance. - Fun On and Off-Site Events. - Referral Bonus Program. - Employee Assistance Program.

United States