Information Security Analyst responsible for conducting internal audits and compliance in information technology. Working with audit teams and enhancing compliance frameworks at Ness Digital Engineering.
About the role
- IT/Cyber Security Analyst supporting ION Markets' security strategy through identifying and mitigating information security risks. Collaborate within the IT Security Team for proactive security management.
Responsibilities
- Protect and defend: identify, analyze and mitigate threats to IT systems and/or networks.
- Use defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.
- Respond to security alerts to mitigate immediate and potential threats. Use mitigation, preparedness, and response and recovery approaches, as needed, to maintain information security and minimize impacts.
- Conduct assessments of threats and vulnerabilities; determine deviations from acceptable configurations, enterprise or local policy; assess the level of risk; and develop and/or recommend appropriate mitigation countermeasures.
- Operate and maintain: configure, tune, maintain and operate key security controls, technologies, and other risk mitigations.
- Application Penetration Test Activity
- Security Application
- Execute ongoing, operational business-as-usual (BAU) tasks to meet management-defined KPIs and SLAs, and deliver security projects in line with management-defined priorities and deadlines.
- Stay current with the latest security news, threats, intelligence, tactics, techniques, and vulnerabilities. Research and analyze new threats and vulnerabilities to determine exposure.
- Perform threat hunting and review, triage, investigate and escalate security alerts raised by the Group-Wide SOC team, security tools, technologies, and services (e.g. endpoint security, network security, DLP, SIEM, etc.)
- Assist and/or lead efforts to isolate, contain, respond to, and recover from security incidents.
- Identify, review, prioritize, plan, coordinate, and follow-up on the remediation of vulnerabilities.
- Configure, customize, tune, manage, troubleshoot, and maintain to ensure effective and efficient operation of security technologies, intrusion detection/prevention systems, etc. This may also include scripting, automation, and orchestration across various platforms.
- Define, document, and follow approved processes for all the responsibilities included in this job description. Create and maintain documentation for systems, including design and operation.
- Review systems, configurations, and process to ensure and report on compliance with ION policy, client requirements, audit controls, regulations, and industry best practices. Provide best practice security recommendations to IT and other teams within ION, based on review results.
- Respond to information security-related inquiries and requests.
Requirements
- Master’s degree in computer engineering / computer science or a cybersecurity technology-related field and/or relevant working experience
- Must have fundamental programming/scripting capabilities (e.g. python, powershell, bash, etc.)
- Must have in-depth understanding of operating systems (Windows/Linux)
- Must have understanding of Network and Infrastructure assets
- A team player with the ability to work independently and unsupervised
- Ability to own delegated tasks and see them through to completion
- Ability to manage time and prioritize work to maximize productivity
- Excellent communication skills (both written and verbal)
- Exceptional attention to detail and quality
- Excellent problem-solving techniques and trouble analysis skills
- Endpoint security concepts, controls, and best practices for Servers (e.g. Windows and Linux)
- General IT networking concepts, protocols, standards and network security concepts, controls, and best practices
- Cryptography fundamentals and data security controls and best practices
Benefits
- Important Notes
- According to the Italian Law (L.68/99) please note that candidates from the disability list will be given priority.
- Due to the high volume of applications, only those candidates that meet the required criteria for selection will be contacted.
- Please do not apply if you don’t currently have the legal right to work in Italy, or if that right is just about to expire, or if that right has restrictions imposed which would prevent you from undertaking a full-time employment contract.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Intern supporting IT Security team at OneDigital with hands - on experience and mentoring. Engaging in real - world assignments and responsibilities within IT Security.
Cyber Threat Intelligence Analyst at AIG specializing in cyber threat research and intelligence production. Collaborating with an interdisciplinary team to enhance cybersecurity situational awareness and reporting.
Senior Cyber Security Analyst protecting customers from cyber threats while enhancing cyber security services at technology firm. Focused on both security operations and technical delivery.
Cybersecurity Analyst assisting in the review and implementation of cybersecurity initiatives across a large environment at Kemper. Responding to cyber threats and improving processes and technologies.
Senior Information Security Analyst managing Information Security Management System at BMLL Technology. Supporting compliance with ISO 27001 and enhancing security measures.
Graduate Cyber Security Analyst at McKesson participating in a 24 - month Cyber Academy program. Monitor security alerts and contribute to incident response efforts while gaining mentorship.
Threat Intelligence Analyst role analyzing cyber threats and providing strategic recommendations. Working with cybersecurity teams at PwC Canada to safeguard client data and systems.
Contract Security Analyst specializing in security operations and incident response for cloud security at Embark. Focus on alert handling, detection engineering, and data loss prevention.
Cyber Security Analyst providing security operations support for USAF Cloud One project. Engaging in incident response and cybersecurity compliance activities within a hybrid environment.