Senior Information Security Analyst

Overview

Senior analyst assessing security posture, risks, and incident response.

Key Responsibilities

• security training
• risk assessment
• security reporting
• policy development
• security monitoring
• incident response

Tasks

-Training: Perform security awareness training program related to phishing campaigns. -Risk Assessment: Conduct regular assessments of the organization's cybersecurity measures to identify vulnerabilities and risks. -Reporting: Prepare detailed reports on security issues, such as breach incidents, current risk status, and improvement recommendations. -Policy Development Support: Assist in developing and updating the organization's security policies and procedures based on the findings and evolving threat landscape. -Monitoring and Analysis: Use various tools to monitor networks and systems for security breaches or intrusions. Analyze security breaches to understand their root causes. -Incident Response: Play a key role in responding to security incidents and breaches, including assisting with investigations and remediation efforts.

Requirements

• cissp
• 8 years
• siem
• aws
• iso 27001
• bachelor's

What You Bring

-Information Security certification (CISSP, GSEC, Security ) -Minimum 8 years of experience in Information Security. -Demonstrated expert knowledge with two or more Information Security technologies such as EDR, IPS, SIEM, SOAR, CASB, CAASM, IAM, PAM, NAC, MFA, and DLP -Bachelor's degree in Information Security, Computer Science, Computer Engineering, Information Technology, or related field. -Demonstrated ability to evaluate cybersecurity risk and propose risk mitigations to technical and non-technical audiences. -Broad experience and familiarity with Information Technology such as routers, load balancers, web application gateways, PKI, and Active Directory. -Highly effective oral and written communication skills with ability to convey security concepts and risks to non-technical personnel. -Experience with CIS Critical Security Controls, OWASP Top 10, and MITRE ATT&CK framework. -Demonstrated knowledge of compliance frameworks (ISO 27001, SOC 2, NIST, FedRAMP, etc.). -Demonstrated knowledge and experience of securing cloud environments such as Azure, AWS, and GCP. -Broad understanding of network and security protocols such as, DNS, SPF/DKIM/DMARC, SSL/TLS, TCP/UDP, IPSec.

People Also Searched For

About Burns & Mcdonnell India

-Founded with a vision to tackle complex engineering challenges, the company is a key player in providing full-service engineering, architecture, and construction solutions. -Recognized across various industries for its expertise in infrastructure, energy, and industrial projects. -Involved in high-impact, high-visibility projects, from designing intricate power plants to constructing large-scale transportation networks. -Significantly contributes to renewable energy sectors, driving both wind and solar energy projects. -Excels at bringing innovative, sustainable designs to life, often serving as the main contractor for projects of national significance. -Operates across critical industries like utilities, energy, and government sectors, showcasing versatility and expertise in handling large-scale, complex undertakings. -Continues to shape the future of engineering in India and beyond through creativity, technical expertise, and industry needs understanding.

Sector Specialisms