Senior Security Analyst

The Senior Security Analyst works under the general guidance of the Manager, Information Security, to support the firm’s internal information security program. The analyst configures and maintains the network security infrastructure including, endpoint detection and response (EDR), Data Loss Prevention (DLP), email security, firewall infrastructure, vulnerability detection and remediation, monitoring, log collection/correlation, and intrusion detection/prevention.

As part of a cross-functional IT Security team, the Senior Analyst will work on multiple daily tasks as well as long-term projects and prioritize according to management direction. The Senior Analyst will work both independently and as part of a team and interface with internal and external stakeholders.

•    Reviews and responds to anomalies that may indicate security issues or insider threats.
•    Triages, validates, tracks, and investigates security alerts and declares incidents utilizing in-house and custom tools.
•    Tracks vulnerability lifecycle including initial assessment, remediation recommendations, assistance with change control and follow-up to verify mitigation.
•    Enables an innovative approach to system architecture standards which greatly increase the flexibility, scalability, and reliability of IT services.
•    Plans and executes the installation, configuration, monitoring and administration of security technologies including Intrusion Detection/Prevention Systems, VPN, endpoint protection, and others.
•    Performs daily reviews on all security appliances to ensure optimal security.
•    Oversees VPN configuration, technical risk assessment, multi-factor authentication, identity management, and general security consulting for enterprise projects.
•    Supports and communicates security system engineering policies, standards, guidelines and procedures and technical documentations.
•    Produces written reports including metrics of findings, risk, and recommendations, and assists with further development of information security policies, standards and procedures.
•    Works with other IT staff to improve the security of the environment through configuration change recommendations.
•    Implements and maintains Data Loss Prevention (DLP) configuration and agents. Tunes and troubleshoots DLP configuration and alerts as needed.
•    Documents policies and procedures to support certification activities.