Associate Security Analyst

It Technology Consulting LLC
New York, United States of America
9 days ago

Role details

Contract type
Permanent contract
Employment type
Part-time / full-time
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
$ 145K

Job location

New York, United States of America

Tech stack

Microsoft Windows
API
Artificial Intelligence
Apple Mac Systems
Application Layers
Border Gateway Protocol
CentOS
Cisco PIX
Computer Security
Computer Networks
System Configuration
Dynamic Host Configuration Protocol
Debian Linux
Linux
Digital Assets
DNS
Cryptographic Protocols
Fiddler (Software)
Internet Protocol Security (IP SEC)
Intrusion Detection Systems
Virtual Private Networks (VPN)
Network Security
Network Architecture
Routing
Network Protocols
Open Shortest Path First
Security Information and Event Management
TCP/IP
Virtualization Technology
vSphere
Software Vulnerability Management
Wide Area Networks
Scripting (Bash/Python/Go/Ruby)
Prompt Engineering
QRadar
Generative AI
Firewalls (Computer Science)
Information Technology
SolarWinds (Software)
Network Support
Build Tools
Splunk
New Relic (SaaS)
SentinelOne Expertise
Vulnerability Analysis
VMware

Job description

  • Monitor security event management systems (SIEM) to identify potential threats and vulnerabilities in real-time.
  • Conduct security analysis and vulnerability assessments across diverse IT infrastructure components, including network, system, and application layers.
  • Investigate security incidents, perform risk assessments, and coordinate incident response activities to mitigate impact.
  • Assist in implementing and maintaining security controls such as firewalls (Cisco ASA), endpoint detection and response (EDR), and intrusion detection systems (IDS).
  • Support network security operations by configuring and managing network protocols (TCP/IP, IPsec), routing protocols (OSPF, BGP), and network architecture components like LAN/WAN.
  • Contribute to the development and review of system security plans, ensuring compliance with ISO 27001, NIST standards, FISMA, FedRAMP, and other relevant frameworks.
  • Participate in vulnerability research, threat intelligence analysis, and vulnerability management initiatives to strengthen our cybersecurity defenses.

Requirements

We are seeking a dynamic and detail-oriented Associate Security Analyst to join our cybersecurity team. In this role, you will be instrumental in monitoring, analyzing, and responding to security events across our IT infrastructure. Your proactive approach will help safeguard our digital assets, ensure compliance with industry standards, and support the overall security posture of our organization. This paid position offers an exciting opportunity to develop your expertise in cybersecurity operations within a fast-paced environment committed to innovation and excellence., * Bachelor's degree in computer science, information technology, or a related field; relevant certifications are a plus.

  • Knowledge of computer networking concepts including LAN/WAN, TCP/IP, DNS, DHCP, VPNs, and network support tools.
  • Experience with security information and event management (SIEM) platforms such as Splunk or SolarWinds.
  • Familiarity with firewall technologies (Cisco ASA), IDS/IPS systems, and network security protocols like IPsec and SSL/TLS.
  • Understanding of operating systems such as Windows, Linux (Debian, CentOS), macOS, and virtualization platforms like VMware or vSphere.
  • Ability to analyze logs using tools like Fiddler or New Relic for threat detection & response purposes.
  • Strong problem-solving skills with an emphasis on incident recovery, system hardening, and vulnerability assessment.
  • Excellent communication skills for documenting findings clearly and collaborating effectively within a team environment., * Bachelor's degree in Computer Science, a related technical field (e.g. Cyber Security, Information Technology) or equivalent practical experience.
  • Experience utilizing generative AI security assistants, security copilots, or AI-infused query builders to search Security Information and Event Management (SIEM) telemetry, summarize incidents, or accelerate analysis workflows.
  • Experience with Endpoint Detection and Response (EDR) tools (such as Crowdstrike Falcon or SentinelOne Singularity, specifically utilizing AI or heuristic modules), Network Detection and Response (NDR) and Next-Generation Firewall (NGFW) tools (such as Corelight, Palo Alto, Vectra, or Trellix NX), or SIEM platforms (such as Google Security Operations, Splunk, or QRadar).

Preferred qualifications:

  • 4 years of experience in a SOC environment, a specialized Information Security role.
  • Experience leading investigations/participating in response operations for high-severity events.
  • Proficiency with AI prompting techniques (prompt engineering) tailored for cyber security use cases, such as extracting indicators of compromise (IOCs) from unstructured threat reports or automating the generation of YARA-L/Sigma rules.
  • Proficiency in scripting with experience connecting to AI model APIs to parse data, automate repetitive tasks, or build tools.
  • Understanding of the risks associated with using Generative AI in security contexts, including data privacy/leakage concerns, model hallucination management, and prompt injection concepts.

Benefits & conditions

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Employee assistance program
  • Employee discount
  • Flexible schedule
  • Flexible spending account
  • Health insurance
  • Health savings account
  • Life insurance
  • Paid time off
  • Parental leave
  • Professional development assistance
  • Referral program
  • Retirement plan
  • Tuition reimbursement
  • Vision insurance

Apply for this position