Company Description
ClientSolv Technologies is an IT solution firm with over a decade of experience serving Fortune 1000 companies, public sector and small to medium sized companies. ClientSolv Technologies is a woman-owned and operated company that is certified as a WMBE, 8a firm by the Federal government's Small Business Administration.
Job Description
We are seeking an Information Security Analyst for a 12-month contract opportunity in Nashville, TN. This role will work a hybrid schedule with remote and in-office responsibilities, so this role will require you to be located within a reasonable commuting distance of Nashville. This role will work Monday-Friday from 8:00 am- 4:30 pm.
In this role, you will be the “front line defense” by ensuring that security alerts are reviewed, remediated, or escalated with appropriate urgency and that all response actions are documented accurately. This is a fundamental role in protecting the information assets of the organization by effectively identifying and responding to potential indicators of compromise or attack.
Responsibilities and Duties
- Enforce policy, guidance, and training requirements according to Best Business Practices
- Ensure implementation of system updates, reporting, and compliance procedures
- Ensure users meet the requisite favorable security investigations, clearances, authorization, need-to-know, and security responsibilities before granting access to the department information
- Ensure users receive initial and annual Cyber Security Awareness training, as well as troubleshoot issues and repair systems
- Ensure log files and audits are maintained and reviewed for all systems and that authentication (for example, password) policies are audited for compliance
- Prepare, distribute, and maintain security plans
- Review and evaluate the effects on the security of system changes
- Ensure that all Systems within their area of responsibility are certified, accredited, and reaccredited
- Ensure system recovery processes are monitored and that security features and procedures are properly restored
- Maintain current software inventory and ensure security-related documentation is current and accessible to properly authorized individuals
- Monitor alerts, detections, or other indicators of compromise/attack from a variety of information security solutions.
- Investigate, contain, eradicate, and/or escalate security detections as appropriate
- Work closely with Cyber Security Architect and network security team to implement and maintain secure network design
- Provide information security expertise to system development teams
- Document and generate reports of detections and response actions for review by management and other stakeholders
- Assist in the analysis of vulnerabilities
- Monitor security platforms’ health for errors, misconfigurations, or performance alerts
- Leverage the SIEM platform by creating and executing search queries, dashboards, and alerts to identify threats and assist in investigations.
- Support end-users and other stakeholders’ requests related to information security service
- Perform control testing and other risk management activities
- Provide information in response to assessments and audits
- Maintain an understanding of the systems, solutions, and technologies deployed on the network
- Works with network monitoring and management applications and creates highly-reproducible configuration scripts and templates
Qualifications
- Experience in Information Security and/or Information Technology in an operations or support role
- Prior experience in an information security incident response role.
- Experience troubleshooting and/or securing computer systems and networks
- Experience with SIEM platforms
- Experience reviewing logs, scripting tasks, or creating structured queries/regex searches
- Familiarity with Cisco security products and operational practices
- Awareness of Information Security best practices and regulatory requirement
- Bachelor’s degree in Computer Science, IS or Information Security a plus CISSP, CISM, GIAC and/or similar certifications a plus
- Strong professional communication skills, both verbal and written
- Strong understanding of computer systems and networking principles
- Strong analytical skills and strong knowledge of data analysis tools
- Ability to parse logs, create queries, and perform root cause analysis of events
- Understanding of logical security, user access, and identity management
- Detail-oriented and process-focused with a strong appreciation of completeness and accuracy
- Ability to independently prioritize work and complete assignments with minimal oversight
- Team player who is energized by problem-solving and finding solutions together to deliver maximum benefit.
- Ability to adjust communication style/content to interact with IT and business professionals.
- Programming/Scripting skills are a plus
Additional Information
This 12-month contract opportunity is in Nashville, TN. This role will work a hybrid schedule with remote and in-office responsibilities, so this role will require you to be located within a reasonable commuting distance of Nashville. This role will work Monday-Friday from 8:00 am- 4:30 pm.