Internal applicants must apply by 9/12

SUMMARY
The Network Analyst - Security and Compliance will be primarily responsible for monitoring and analyzing security events within IMRF's IT environment. This role is crucial in identifying potential security threats and assisting in incident response efforts. The ideal candidate will have a foundational understanding of cybersecurity principles and a keen interest in developing their skills within a dynamic and fast-paced environment.

ESSENTIAL DUTIES AND RESPONSIBILITIES
•    Monitor security alerts and events generated by various security tools (e.g., Palo Alto firewalls, LogRhythm SIEM, Fortinet FortiNAC).
•    Analyze security incidents to identify potential threats and vulnerabilities.
•    Assist in the investigation and response to security incidents, including malware analysis, intrusion detection, and threat hunting.
•    Participate in incident response activities, including triaging and escalating incidents as needed.
•    Document incidents, actions taken, and outcomes in accordance with the organization's incident response plan.
•    Stay current with the latest cybersecurity threats, vulnerabilities, and industry trends.
•    Assist in the evaluation, testing and deployment of patches to all IMRF systems on a monthly or “as needed” basis.
•    Assist in the development and maintenance of threat intelligence reports and indicators of compromise (IOCs).
•    Work closely with other SOC team members, IT staff, and external partners to address security issues.
•    Communicate effectively with stakeholders to provide updates on security incidents and remediation efforts.
•    Contribute to the enhancement of SOC processes, tools, and procedures.
•    Participate in regular training and development activities to improve cybersecurity knowledge and skills.
•    Assist the Help Desk in solving complex and common problems related to system security and network access and provide additional resource coverage as needed for special events.
•    Perform other duties as required.

QUALIFICATIONS
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

EDUCATION and/or EXPERIENCE
•    Bachelor's degree in Cybersecurity, Information Security, or similar discipline
OR
•    Currently certified in GSOC OR CompTIA Security+ OR CompTIA CySA+ OR similar discipline 
AND 
1+ year experience working with enterprise security tools and technologies

•    Additional qualities/technical skills and experience preferred:
o    Knowledge of scripting languages (e.g., Python, PowerShell) for automation tasks.
o    Understanding of security frameworks and standards (e.g., NIST, ISO 27001).
 

SALARY AND BENEFITS