Вакансія: Information Security Analyst

Job Details

Description

Who We Are

IREX is a global development and education organization. We strive for a more just, prosperous, and inclusive world—where individuals reach their full potential, governments serve their people, and communities thrive. With a projected annual portfolio of more than $100 million and nearly 700 staff worldwide, we work with partners in more than 100 countries in four areas essential to progress: cultivating leaders, empowering youth, strengthening institutions, and increasing access to quality education and information.

The Information Security Analyst will be responsible for ensuring the confidentiality, integrity, and availability of sensitive data and information systems within our organization. This individual will collaborate with cross-functional teams to assess risks, implement security measures, and respond to security incidents effectively. The ideal candidate should possess strong analytical skills, extensive knowledge of hospital operations, and experience with Microsoft Defender for Endpoint platform. In addition, experience in one or more of the following tools is preferred: Microsoft Sentinel, Meraki Firewalls, DarkOwl, Qualys, Amazon Web Services, KnowBe4, Azure Servers, CloudFlare and security incident tracking applications.

We are doers. Our decades of on-the-ground experience help us create greater impact, practical recommendations, and lasting partnerships. 

Are you the next member of our team? 

Your Background and Skills

• Bachelor’s degree in computer science, IS or Information Security.
• Minimum of 5 years’ experience in Information Security.
• At least 2 years’ prior experience in a role with responsibility for information security incident response; this is not an entry level position.
• CISSP, OSCP, CRISC, GCIH, GCFA, GFCE, GSE and/or similar certification desirable.
• Excellent program/project management, prioritization, and organizational skills.
• Acute attention to detail.
• Experience with Microsoft Defender for Endpoints.
• Experience with Windows 10/11 operating systems and MacOS.
• Experience working with Zendesk and Qualys.
• Experience working with and managing phishing simulation platforms.
• Experience with network fundamentals such as IPv4, subnet mask, DNS, DHCP, etc.,
• Experience creating, collecting, and assembling metrics for reporting.
• Experience with incident response.
• Experience working with on-prem and Cloud technology platforms and applications.

• Must demonstrate valid proof of unrestricted authorization to work in the country where this position is based.

Your Daily Tasks

• Monitor alerts, detections, or other indicators of compromise/attack from a variety of information security solutions.
• Perform threat hunting by actively seeking out anomalies and Indicators of Compromise and/or verifying their presence in IREX’s Information Technology Environment.
• Perform Incident Response activities based on automated alerts, malware assessment, IOC discovery and other threat hunting activities.
• Investigate, contain, eradicate, and/or escalate security detections as appropriate.
• Assist in the discovery, analysis, and remediation of vulnerabilities.
• Monitor security platforms’ health for errors, misconfigurations, or performance alerts.
• Leverage SIEM platform by creating and executing search queries, dashboards, and alerts to identify threats, indicators of compromise, and assist in investigations.
• Perform control testing and other risk management activities.
• Provide information in response to assessments and audits.
• Provide oversight of managed third-party security services.
• Maintain an understanding of the systems, solutions, and technologies deployed in IREX’s IT infrastructure.
• Serve as a resource to the organization in the realm of information security by maintaining a dedication to continuous learning and growth.
• Contacts staff and assists in resolving security issues.
• Contacts staff and vendors to gather information about security incidents.
• Contacts vendors and contractors regarding information security issues.
• Document and generate reports of detections and response actions for review by management and other stakeholders.
• Update and manage IREX’s Information Security SharePoint Site.
• Provides security training to partners and projects, when requested.
• Provides policies and procedures documentation to NBD, when needed.
• May communicate with NBD regarding regional privacy regulations.

• Responsible for the execution of the unit budget. 

• Support fellow team members, end-users, and other stakeholders’ requests related to information security services.
• Other duties as assigned. 

We conduct background checks on all successful candidates.

This position is eligible for Remote work. The eligible employee is regular, full-time staff who works from a worksite outside the IREX office on a more permanent or ongoing basis.

This position is not eligible for Immigration Sponsorship.

NO PHONE CALLS PLEASE 

EOE – Equal Opportunity Employer 

We are an Equal Opportunity Employer, including disability/vets.  

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)

To apply please visit: Information Security Analyst (NEW) | IREX Job Board (ultipro.com)