Information Security Analyst II - Information Security

Information Security Analyst II – Information Security

High School diploma or GED required.
1+ years of experience in cybersecurity, SOC operations, IT support, or incident response.
Hands-on experience with Proofpoint (email security) and CrowdStrike (endpoint security).
Knowledge of SIEM, IDS/IPS, firewalls, and network security principles.
Experience with vulnerability management tools such as Nessus, Qualys, or Rapid7.
Basic scripting skills in Python, PowerShell, or Bash are a plus.

Monitor security alerts and investigate suspicious activities using CrowdStrike EDR and Proofpoint email security solutions.
Respond to security incidents, perform forensic analysis, and document findings.
Work with IT teams to contain and remediate security breaches.
Maintain and update incident response plans and conduct periodic tabletop exercises.
Perform vulnerability scans and analyze reports to identify and mitigate risks.
Collaborate with IT teams to ensure timely remediation of security vulnerabilities.
Recommend security controls and best practices based on assessment findings.
Manage and optimize Proofpoint email security to prevent phishing, spam, and malware attacks.
Configure and tune CrowdStrike policies to enhance endpoint protection.
Investigate email-based threats and assist in mitigating spear-phishing attacks.
Assist in developing and enforcing security policies and procedures.
Ensure compliance with relevant regulatory frameworks (NIST, ISO 27001, SOC 2, etc.).
Provide security awareness training to employees to mitigate cyber risks.
Stay up-to-date with the latest cybersecurity threats, tools, and best practices.
Collaborate with cross-functional teams to implement security improvements.
Participate in security audits and risk assessments.

Some college coursework preferred.
Penetration testing experience is preferred but not required.
Preferred Certifications (Not Required): CompTIA Security+, CySA+, CEH, or similar.