Recruitment Fraud Notice »

Information Security Analyst

Published May 14th, 2025

SUMMARY:

As the Information Security Analyst, reporting to the Manager of Information Security and Compliance, this position is responsible for assisting with the administration, and oversight of the firm’s Information Security Management System (ISMS), as well as other information security-centric initiatives related to compliance, risk management, data privacy, and protection strategies for the organization, in alignment with relevant laws, regulations, and industry standards. One of the key aspects of this role is participating in the vendor management process and compliance-related internal and external audits.

ESSENTIAL FUNCTIONS:

  • Serves as an administrator to the information security systems to ensure that best practice control objectives are achieved in protecting information assets.
  • Monitors security event alerts from various sources including SIEM, IDS/IPS, endpoint and network security tools.
  • Stays current with emerging threats, vulnerabilities, and industry best practices.
  • Performs real-time analysis of security alerts and escalate incidents appropriately.
  • Assists with the maintenance and development of the information security policies and SOPs; ensures policies meet business requirements and align with US federal, state, EU, and additional global obligations.
  • Assesses existing IT policies, guidelines, procedures, and standards to discover gaps and create or align firm documentation, as necessary.
  • Performs IT risk assessments to identify, assess, and remediate threats internally and with 3rd party vendors.
  • Manages the day-to-day operations of the information security training program to all employees.
  • Assists with the firm’s ISO 27001 certification and re-certification process.
  • Assists with other projects and initiatives at the direction of the department and firm.

QUALIFICATIONS:

  • Bachelor’s degree in Cybersecurity, Information technology, or related field required and professional certifications (e.g., CompTIA Security+, SSCP) preferred.
  • Minimum of six (6) years of work experience in the field of information security and compliance, or equivalent combination of education and work experience required.
  • Experience in IT control frameworks e.g. ISO 27001, NIST 800-171, SOC, CIS.
  • Highly proficient in MS Outlook, Word, and Excel as well as basic computer and database management skills.
  • Exceptional oral and written communication skills and the ability to articulate highly technical information for real world business impact at a senior management level.
  • Strong time management, prioritization, problem-solving, and organizational skills and the ability to work effectively in a high-pressure environment.
  • Strong interpersonal skills and ability to work effectively with different levels of constituencies
  • Flexibility and capacity to respond calmly, efficiently, and effectively in stressful situations.
  • Punctual and reliable and able to meet set deadlines and work effectively under pressure.
  • Ability to maintain confidentiality of matters and other firm business information.

#Toponehire

Attach a resume file. Accepted file types are DOC, DOCX, PDF, HTML, and TXT.

We are uploading your application. It may take a few moments to read your resume. Please wait!

Skip to content