Network Coverage

Information Security Analyst

Full-Time in United States - Remote OK - Mid Level - $70k - $100k

Job description

Who we are:

Network Coverage is a best-in-class technology solutions provider specializing in IT managed services, cybersecurity, compliance, cloud enablement, digital transformation and software development for mid-market and enterprise organizations. Our comprehensive technology solutions and operational excellence allow clients to focus on their business with the value of an end-to-end technology partner.

Network Coverage believes in providing purpose to our people and that character, integrity and commitment win out. Technology is our mission, empowering and developing our team is our passion.

Integrity, Humility, Ownership, Urgency, Service.

What the role is:

Information Security Analyst (Tier 1/2)

Network Coverage is seeking talented and experienced Analysts to join our growing Security Team. Candidates will primarily work from home, however occasional dispatch may be required for client-facing meetings, presentations, and consultations and/or training.

2-4 years of experience working in an Information Security capacity is required for this position with demonstrated working knowledge of Information Security standards as applicable to common frameworks, requirements, and best practices. The ability to communicate effectively with clients and team members and work efficiently to resolve time sensitive issues is a must.

An Information Security Analyst working with the Network Coverage Security Team will be expected to work within deadlines and will adjust to ever-changing client needs and scenarios within a fast-paced environment

Level: Mid-Level

Reports To: Information Security Manager

Basic Scope and Function:

As an Information Security Analyst at Network Coverage, you will be part of the Security Team triaging events and incidents as they are reported. You will be monitoring infiltration attempts, looking for patterns and root cause to ensure infiltration attempts and compromises are identified and remediated in a timely manner. You will identify attack patterns and advise Network Coverage’s team and clients how best to defend themselves against targeted attacks. Your expertise will be an integral part of our all-encompassing Cybersecurity Management deliverable. You be working closely with team members and clients in various locations across the US and overseas and will fulfill the role of subject matter expert, advising upon the on the most effective approach to security, and continuously developing and helping to implement this approach. As an Information Security Analyst, you will be responsible for Security Auditing, Penetration Testing (Internal & External), Compliance auditing and implementation, among other duties, under the guidance of the Chief Information Security Officer.

Due to the nature of the work, you may be required to fulfill on-call, incident response duties as part of a night and weekend rotation. Additional work hours may also be required during incident remediation.

Primary/Essential Duties and Key Responsibilities:

  • Continuously monitor assets and respond to active threats affecting Network Coverage’s client and internal systems
  • Detect, report, assess, and respond to information security incidents.
  • Monitor and analyze data flow to identify and block malicious behavior and activities
  • Participate in investigations towards identifying root cause for security events, evaluating anomalous activity, and tuning for frequent false positives.
  • Participate in the design and execution of vulnerability assessments and security audits.
  • Participate in the management of the employee awareness campaigns for both Network Coverage staff and clients, to include phishing simulations and awareness training.
  • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
  • Document best practices with the Cybersecurity and Operations staff using available collaboration tools and workspaces.
  • Develop and maintain both internal and client-facing documentation and procedures for reviewing and enforcing end-to-end client security and compliance.
  • Anticipate new security threats and stay-up to date with evolving infrastructures.
  • Provide timely, detailed, and complete reports on security events and incidents to leadership.
  • Provide some after-business hours support in response to security alerts and investigations.
  • Perform other duties and tasks as assigned.

Knowledge, Skills and Abilities (KSAs) Required:

  • Strong problem-solving and analytical skills.
  • Excellent customer service skills, including understanding how to de-escalate, how to soothe and how to deliver the most efficient solution.
  • Strong communication skills, both verbal and written.
  • Strong familiarity with Windows desktop and server operating systems.
  • Strong familiarity with Microsoft Office 365 and Azure Active Directory support and implementation.
  • Strong understanding of networking concepts, familiarity with routers, firewalls, access points, IDS/IPS and VPN.
  • Familiarity with Email threat protection tools and concepts.
  • Familiarity with RMM and asset management tools are a big plus.
  • Understanding of tools and processes used in security monitoring and incident response
  • Experience with Endpoint Detection & Response (EDR) tools
  • Ability to understand vulnerabilities at a technical level and capable of recommending and effectively communicating mitigation strategy
  • Familiarity with regulatory frameworks such as NIST/CMMC, ISO 27001, HIPAA/Hitech are a big plus.
  • Strong organizational, operational, and inter-personal skills
  • Ability to communicate and write in English professionally
  • Reliable personal transportation for use in traveling to clients' offices is essential.

Minimum Experience and Education Required:

  • 2-4 years of experience working in an Information Security capacity.
  • 4 year degree or equivalent real world experience.
  • CompTIA Security+ or similar.
  • ISC2 SSCP (Substitute for Security+)
  • High School Diploma or Accredited GED.

Supervisory/Managerial Experience and Responsibility:

  • No supervisory or managerial experience required.
  • No supervisory or managerial duties in this role.

Work Environment:

Work is primarily performed in a remote capacity and will require use of video conferencing software along with a company issued webcam. Work involves operation of computer equipment for 8 hours or more daily.

Network Coverage remote team members must ensure the availability of a stable, reliable, and secure internet connection with adequate bandwidth to support video calls as needed throughout the course of their shift and while performing on-call duties.

Physical Requirements:

  • Sitting
  • Standing
  • Moving of self
  • Moving of equipment
  • Communicating
  • Visual acuity for driving and computer work
  • Kneeling
  • Crawling
  • Reaching
  • Stooping
  • Lifting
  • Pulling