Information Security Analyst

Primary Duties

• Monitor and analyze network traffic using tools such as Security Information and Event Management systems to detect and respond to security incidents.
• Provide authentication and authorization to specific user profiles, external profiles, and service accounts/non-human accounts.
• Perform vulnerability scans and assessments to identify and address potential security weaknesses across systems and networks.
• Manage user/service accounts, changing the rules/permissions by using the UNIX commands, providing SUDO access based on user requirements, and forcing the server to change the rules.
• Handle incident tickets, provide Multi-Factor Authentication (MFA) and resolve incident tickets with agreed SLA (Service-Level Agreement) and perform root cause analysis for the technical incidents and ensure no redundancy for such incidents.
• Implement and maintain endpoint security tools such as antivirus software, encryption solutions, and endpoint detection and response systems.
• Review and analyze security logs from multiple sources, including network devices, servers, and applications, to identify abnormal patterns or potential threats.
• Manage the data migration from SharePoint (On-Premises) to Microsoft 365.
• Contribute to the development, implementation, and testing of security protocols, disaster recovery plans, and incident response strategies.
• Lead the internal project team, to streamline the process of resolving issues, and ensure the expected support/communication with/to end-users and clients.

100% telecommuting is permitted from home office per company policy to support New Era offices or clients located throughout the United States.

Requirements

Education: Bachelor's degree (or foreign educational equivalent) in Computer Science, Information Technology or a closely related technical field plus at least 3 years of post-degree, progressive experience in each of the below items; OR, alternatively,

A Master's degree (or foreign educational equivalent) in Computer Science, Information Technology or a closely related technical field plus at least 1 year of experience, gained at any time, in each of the below items.

Experience: Depending on the degree held, must have at least 3 years or 1 years of experience as described above in each of the following:

• Monitoring and analyzing network traffic threats;
• Implementing and managing antivirus, encryption, and Endpoint Detection and Response (EDR) tools;
• Securing cloud environments (such as AWS, Azure, Google Cloud) including configuration of cloud-native security tools, access controls, and data protection strategies;
• Automating routine security tasks such as log parsing, vulnerability scans, and patch management with scripting languages (such as Python, Bash, PowerShell);
• Configuring firewalls and VPNs to protect network boundaries; and
• Managing Oracle systems including Oracle Identity Management, Oracle E-Business Suite, Oracle Identity System Administration, and Oracle Data Integrator.