Information Security Analyst
The Municipal Securities Rulemaking Board (MSRB) seeks an Information Security Analyst to improve Systems Security, policies, procedures, and system compliance both in the AWS Cloud and on-premise networks. Has a firm grasp on AWS security tools and the shared security model. Implements security tools and modifies configurations under the direction of the Security Architect. Supports Dev/Sec/Ops processes by writing code for the CI/CD pipeline for infrastructure and security. Assists in monitoring the threat intelligence sources and adjusting, based on the current and ever-changing security landscape. Supports and monitors tickets created by external vendors, penetration testers and Managed Services Security Providers (MSSP's).Responsibilities:Performs and leads maintenance activities for the Information Security toolsDesigns, implements, maintains, documents and reports on security requirements and standards across the Organization network, server, and desktop infrastructureMonitors cybersecurity intelligence through a variety of feeds including, but not limited to, SecureWorks, FS-ISAC, AWS, equipment vendors, dark web, security feeds and blogsUtilizes tools to include, but not limited to AWS Security Hub, AWS Network Application Firewalls, Tenable Nessus scanners, Splunk, Tripwire, Office365 Security CenterMonitors AWS security services for additions and changes to ensure the Organization is maximizing value from AWS.Monitors Security Hub in AWS for compliance to CIS standards and AWS best practices and initiates corrective actionsManages centralized logs, security dashboard and AWS security tools and monitors for suspicious eventsSets up and monitors regular email phishing tests for staffAssists with responding to internal and external security auditsAssists team with analyzing potential security breaches to determine their root causeReviews and maintains corporate security policiesTrains fellow employees in security awareness and proceduresPerforms other duties as assignedOther duties as assigned.A resume must be attached for full considerationThis is a Hybrid Work position. Qualifications:Bachelor's degree in Computer Science or related studies with two to five years of experience in an IT support role, maintaining computer hardware/network support. Knowledge of malware analysis technologies and standard processes and common commercial off the shelf Malware Tools. Must have experience working with Windows 10 and Windows 2012/2016 server operating systems. Experience with remote connectivity and supporting users connecting to the office, network switching, firewall security, internal/external DNS and SMTP is preferred. AWS certification preferred.Excellent interpersonal skills required to interact at all levels of the organization and effectively present informational training and respond to inquiries. Desired certifications and skills: AWS Certified Practitioner, MCITP and CCENT. Must have the ability to work independently. Must possess strong communication skills, teamwork skills, and a strong attention to detail.Must be able to lift up to 40 lbs.All applicants must demonstrate their ability to work in the US without current or future employer sponsorship. No exceptions will be made.