Information security analyst

o Investigate and analyze security incidents to identify root causes and limit potential damage.

o Coordinate with internal and external stakeholders to effectively resolve security incidents.

o Document and report incident findings and remediation actions.

o Identify and prioritize vulnerabilities in our systems and applications.

o Assess the potential impact of vulnerabilities and develop remediation plans.

o Track and report on vulnerability patch progress and remediation efforts.

o Stay up to date on the latest security threats and vulnerabilities.

o Conduct periodic risk assessments to identify and prioritize security risks.

o Develop and implement risk mitigation strategies to address identified risks.

o Monitor and report on the effectiveness of implemented risk controls.

o Develop and deliver security awareness training programs for employees on various security topics.

o Track and report on the effectiveness of security awareness training programs.

o Ensure compliance with industry standards and regulations such as NIST and ISO 27001.

o Participate in internal and external audits to maintain compliance status.

o Stay up to date on emerging regulations and compliance requirements.

Qualifications:

.

Bachelor's degree in computer science, information security, or related field.

.

4-5 years of experience in information security, incident response, vulnerability management, or risk management.

.

Strong understanding of cybersecurity threats, vulnerabilities and mitigation strategies.

.

Experience with security frameworks and methodologies such as NIST CSF and ISO 27001.