Lead Information Security Analyst (Remote)

Our client is seeking a highly experienced and proactive Lead Information Security Analyst to join their entirely remote cybersecurity team. This crucial role involves safeguarding the organization's digital assets, ensuring the confidentiality, integrity, and availability of sensitive data. You will be instrumental in developing, implementing, and managing robust security protocols and strategies. Responsibilities include performing risk assessments, vulnerability scans, and penetration testing; developing and enforcing security policies and procedures; monitoring security alerts and incident response; and leading the investigation and remediation of security breaches. The ideal candidate will possess a deep understanding of network security, endpoint security, cloud security (AWS, Azure, GCP), and modern threat landscapes. You will also be responsible for staying ahead of evolving cyber threats, recommending and implementing appropriate security technologies and solutions, and mentoring junior security analysts. Excellent communication and leadership skills are essential for collaborating with IT teams, management, and other stakeholders to promote a strong security culture throughout the organization. If you are a security-focused professional passionate about protecting digital environments and excel in a remote work setting, we want to hear from you.

Responsibilities:

• Develop, implement, and manage comprehensive information security strategies and policies.
• Conduct regular risk assessments, vulnerability scans, and penetration tests.
• Monitor security infrastructure and respond to security alerts and incidents in real-time.
• Lead incident response efforts, including investigation, containment, eradication, and recovery.
• Design and implement security controls for networks, systems, applications, and cloud environments.
• Manage security awareness training programs for employees.
• Stay current with emerging threats, vulnerabilities, and security technologies.
• Evaluate and recommend new security tools and technologies.
• Collaborate with IT and development teams to ensure security is integrated into the software development lifecycle.
• Provide leadership and guidance to the information security team.
• Maintain compliance with relevant security regulations and standards (e.g., ISO 27001, GDPR, HIPAA).

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
• Minimum of 8 years of progressive experience in information security.
• Proven experience in threat detection, incident response, and vulnerability management.
• Expertise in network security, endpoint security, and cloud security principles.
• Strong understanding of security frameworks and best practices (e.g., NIST, CIS Controls).
• Experience with SIEM tools, IDS/IPS, firewalls, and other security technologies.
• Relevant security certifications such as CISSP, CISM, CEH are highly desirable.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong leadership and team management capabilities.
• Exceptional written and verbal communication skills for effective stakeholder engagement.