Information Security Analyst

02 Jul 2024

Vacancy expired!

OverviewKimley-Horn, one of Fortune Magazine’s “100 Best Companies to Work For,” is looking for an Information Security Analyst to join the Information Security team in our Raleigh, NC office. As an Information Security Analyst, you will play a critical role in ensuring the security of our organization's technology infrastructure and assets. You will be responsible for overseeing, further developing, and sustaining Kimley-Horn’s incident response program as well as its tooling.This is not a remote position.Responsibilities

Identifying areas for improvement in security operations, processes, and procedures, and implementing necessary changes to enhance security effectiveness and efficiency

Deploy and manage a privileged access management system

Assist in the development, deployment, sustainment, and optimization of existing and new EDR technologies

Implement, and document incident response processes, procedures, playbooks, and guidelines

Automate security workflows, incident response processes, and threat intelligence integration

Serve as the primary escalation point for the SOC in the event of an incident

Manage security incidents, emergencies, or security breaches, including responding to critical incidents, conducting investigations, and preparing incident reports

Conducting security risk assessments and developing security plans and procedures to mitigate identified risks and vulnerabilities

Participate in tabletop exercises and simulations to test and improve incident response plans

Prepare detailed incident reports, documenting the findings, actions taken, and lessons learned

Qualifications

Bachelor’s degree in information security, cybersecurity, or a related field

4+ years of experience in Information Security, Incident Response, or a similar role within an enterprise-level organization

Professional IT certifications relating to IT Security such as Security+, GIAC Incident Handler, GIAC Security Essentials, Certified Information Systems Security Professional (CISSP), or other relevant security certifications.

Experience managing a privilege accesses management system

Experience with developing Incident Response playbooks

Experience managing EDR tools

Experience with security orchestration, automation, and response (SOAR)

Experience with change-management policies and procedures

Excellent problem-solving skills and the ability to think critically under pressure

Strong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholders

Desired Skills:

Familiarity with incident response methodologies, tools, and frameworks

Knowledge of Microsoft security tools as well as other EDR/XDR platforms

Experience with automation and scripting

Experience with IAM / Modern Authentication / Identity tooling is a plus

Familiarity with query languages, advanced queries, and penetration testing tools

Knowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF)

Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.Share this job with a friend (https://careers-kimley-horn.icims.com/jobs/13592/information-security-analyst/job?mode=apply&apply=yes&iniframe=1&hashed=-1834442239)Share on social mediaPleaseCLICK HERE (https://www.kimley-horn.com/careers/benefits/at-a-glance/) to learn more about the potential Benefits you may be eligible to receive with this role.If you require an accommodation, pleaseCLICK HERE. (https://www.kimley-horn.com/careers/ada-accommodation-request/)Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.Equal Opportunity Employer/Protected Veterans/Individuals with DisabilitiesPosted Date 5 hours ago (7/2/2024 5:48 PM)ID 2024-13592Education Bachelor's DegreeDiscipline/Focus Software

Full-time