IT Security Analyst
P OSITION TITLE: IT Security Analyst Supervised by: Information Technology Manager Supervises: N/A Status: Full-Time, Exempt Location: HQ in Brecksville, OH; this position can be remote (home-based) POSITION SUMMARY. The IT Security Analyst's role is to monitor computer networks and systems for security incidents and events and remediate them to the best of their ability. They may identify compromised systems and report on security measures taken to address threats. This role will also analyze security risks and develop response procedures. Additional duties may include developing and testing software deployment tools, firewalls and intrusion detection systems. They will also configure and maintain security software or devices to ensure the safety of company software, systems, and information. This role may also include the exercise of discretion and independent judgment with respect to matters related to software installation or network administration. JOB DUTIES and ESSENTIAL FUNCTIONS. A qualified individual must be able to perform the essential functions of the job as listed, with or without accommodation. ( An Asterisk (*) Identifies an Essential Function ) Analyzes security incidents and performs root cause analysis. (*) Collects intrusion artifacts and uses discovered data to enable mitigation of potential cybersecurity defense incidents within the enterprise. Uses data collected from a variety of cyber defense tools to analyze events that occur for the purposes of mitigating threats. Monitors external data sources to maintain the currency of cybersecurity defense threat condition and determine which security issues may have an impact on the enterprise. Performs and supports security operations. (*) Conducts and manages vulnerability management. Conducts and manages anti-virus management. Conducts and manages penetration testing. Performs assessments and reviews. (*) Conducts software reviews from a security perspective. Performs internal and external security audits. Presents audit findings with summaries and reporting. Writes and submits cybersecurity defense techniques, guidance, and reports on incident findings to appropriate constituencies. Supports projects and continuous Improvement. (*) Researches, evaluates, designs, tests, recommends, and plans implementation of new or improved network security software or devices. Analyzes new or enhanced software application or tool implementations to verify they meet existing network security requirements. Examines network topologies to understand and document data flows through the network and recommend changes as needed. Competencies: Initiative and accountability SIEM Management DLP Process and Technology Risk Analysis IAM Best Practice Network Security Documentation and Training (including user training on security topics) Supervisory Responsibility. This position has no supervisory responsibilities. QUALIFICATIONS. Required Education and Experience: Associates Degree and certificates in computer related field or equivalent. 1-3 years in an IT Security role. Strong customer service and Information technology acumen. Preferred Education and Experience: Security certification including Network+, Security+, CISA, CISSP or equivalent. Previous experience in Hospital & Healthcare, Computer Software industries. Familiarity with HIPAA and STIG compliance standards. Bachelor's degree with 3-5 years applicable experience. Experience with SIEM (Splunk), DLP (Forcepoint), log review, STIG standards and vulnerability management (Tenable), Pen Testing, AV Management, software security evaluation, Python Position Type/Expected Hours of Work. 40 Hours per week. Travel. It is anticipated the IT Security Analyst may be required to travel from time to time as it relates to job related conferences and or continuing education. Work Environment. This job typically operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. Physical Demands. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Position is primarily stationary with the need to stand or sit 80% of the workday. Manual dexterity: Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer. Frequently must analyze, memorize, problem solve, read and perform simple to complex math. May frequently move computer equipment (laptop computer) weighing less than 10 lbs. The employee is occasionally required to sit; climb or balance; and stoop, kneel, crouch or crawl. The employee must frequently lift and/or move objects up to 10 pounds and occasionally lift and/or move objects up to 40 pounds. Work Authorization/Security Clearance (if applicable). In compliance with Federal employment laws, MediQuant will verify the identity and employment authorization of each person hired. AAP/EEO Statement. MediQuant, Inc. is an equal-opportunity employer. Other Duties. Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.