Senior Information Security Analyst (Remote)

Our client is a leading technology firm seeking a highly skilled and experienced Senior Information Security Analyst to join their established, fully remote security operations team. This critical role involves safeguarding the organization's digital assets, identifying vulnerabilities, and implementing robust security measures to protect against evolving cyber threats. The ideal candidate will possess deep expertise in security frameworks, incident response, risk assessment, and a proactive approach to cybersecurity. This position offers the flexibility of remote work from anywhere within the United States.

Responsibilities:

• Monitor security infrastructure for potential threats and vulnerabilities using various security tools (SIEM, IDS/IPS, EDR).
• Conduct regular security assessments, penetration testing, and vulnerability scanning to identify and remediate security weaknesses.
• Develop, implement, and maintain security policies, procedures, and standards in alignment with industry best practices and regulatory requirements.
• Lead incident response efforts, including investigation, containment, eradication, and recovery from security breaches.
• Manage and maintain security technologies such as firewalls, antivirus solutions, encryption tools, and access control systems.
• Provide security awareness training and guidance to employees across the organization.
• Collaborate with IT and development teams to ensure security is integrated into system design and application development lifecycles.
• Stay current with emerging cybersecurity threats, trends, and technologies, and recommend appropriate security enhancements.
• Develop and manage security documentation, including incident reports, risk assessments, and policy updates.
• Participate in security audits and compliance initiatives.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field. Master's degree or relevant certifications (CISSP, CISM, CEH) are highly desirable.
• Minimum of 5 years of experience in information security, with a focus on security analysis, incident response, and risk management.
• Proven experience with SIEM tools, vulnerability scanners, and endpoint detection and response (EDR) solutions.
• Strong understanding of network security, cryptography, authentication protocols, and security frameworks (e.g., NIST, ISO 27001).
• Experience in conducting security investigations and forensics.
• Excellent analytical, problem-solving, and critical-thinking skills.
• Superior communication and documentation abilities, with the capacity to explain complex security issues clearly to both technical and non-technical audiences.
• Ability to work independently and manage time effectively in a remote setting.
• Experience with cloud security (AWS, Azure, GCP) is a plus.

This is an exceptional opportunity to join a growing security team and play a vital role in protecting critical infrastructure in a remote-first environment.