Principal Information Security Analyst

About

Our client is seeking a highly experienced and strategic Principal Information Security Analyst to lead and enhance their cybersecurity defenses. This is a critical, fully remote position focused on protecting sensitive data and critical infrastructure from evolving cyber threats. The ideal candidate will have a deep understanding of information security principles, risk management, incident response, and threat intelligence. You will play a pivotal role in developing and implementing advanced security strategies, policies, and procedures to safeguard the organization's digital assets.

Responsibilities

• Developing and executing comprehensive information security strategies and roadmaps aligned with business objectives and risk tolerance.
• Leading the design, implementation, and management of advanced security technologies and solutions, including firewalls, intrusion detection/prevention systems, SIEM, and endpoint detection and response (EDR).
• Conducting thorough risk assessments, vulnerability analyses, and penetration tests to identify and mitigate security weaknesses.
• Developing and refining incident response plans, leading the response to security breaches, and conducting post-incident forensic analysis.
• Establishing and managing security monitoring and alerting systems to ensure timely detection of threats.
• Creating and enforcing information security policies, standards, and procedures across the organization.
• Managing security awareness training programs for employees to foster a security-conscious culture.
• Staying informed about the latest cybersecurity threats, trends, and technologies, and proactively adapting security measures.
• Collaborating with IT and business units to ensure security is integrated into all aspects of system design and development.
• Providing expert guidance and mentorship to junior security analysts and IT staff.
• Ensuring compliance with relevant regulations and industry standards (e.g., ISO 27001, NIST).

Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. Advanced degree preferred.
• Minimum of 10 years of experience in information security, with a significant portion in a senior or principal role.
• Expertise in cybersecurity frameworks, threat modeling, and risk management methodologies.
• Proven experience with security technologies such as SIEM, EDR, DLP, and cloud security solutions.
• Strong understanding of network security, application security, and cryptography.
• Excellent analytical, problem-solving, and incident management skills.
• Exceptional written and verbal communication skills, with the ability to explain complex security concepts to diverse audiences.
• Demonstrated leadership capabilities and experience mentoring teams.
• Relevant certifications such as CISSP, CISM, or GIAC are highly desirable.

Additional Information

• This role is fully remote and supports the security posture of operations potentially related to Makurdi, Benue, NG.