Report this job

---

What is the problem? *

Incorrect company
Incorrect location
Job is expired
Job may be a scam
Other

Role: Senior Information Security Analyst Location: Nashville, TN Work Arrangement: Hybrid Interview: Webcam or In person (Should be comfortable with both) Position type: W2 contract Note: Local profiles to Nashville or commutable distance only! Job Description: Seeking a Senior Information Security Analyst to join the team. This individual will act as the "front line defense" by ensuring that security alerts are reviewed, remediated, or escalated with appropriate urgency and all response actions are documented accurately. This is a fundamental role in protecting the information assets of the organization by effectively identifying and responding to potential indicators of compromise or attack. Responsibilities: Enforce policy, guidance, and training requirements according to Best Business Practices BBPs. Ensure implementation of system updates, reporting, and compliance procedures. Ensure users meet the requisite favorable security investigations, clearances, authorization, need-to-know, and security responsibilities before granting access to the TMC information. Ensure users receive initial and annual Cyber Security Awareness training, as well as troubleshoot issues and repair systems. Ensure log files and audits are maintained and reviewed for all systems and that authentication (for example, password) policies are audited for compliance. Prepare, distribute, and maintain security plans. Review and evaluate the effects on security of system changes. Ensure that all Systems within their area of responsibility are certified, accredited, and reaccredited. Ensure system recovery processes are monitored and that security features and procedures are properly restored. Maintain current software inventory and ensure security related documentation is current and accessible to properly authorized individuals. Monitor alerts, detections, or other indicators of compromise/attack from a variety of information security solutions. Investigate, contain, eradicate, and/or escalate security detections as appropriate. Document and generate reports of detections and response actions for review by management and other stakeholders. Assist in the analysis of vulnerabilities. Monitor security platforms' health for errors, misconfigurations, or performance alerts. Leverage SIEM platform by creating and executing search queries, dashboards, and alerts to identify threats and assist in investigations. Support end-users and other stakeholders' requests related to information security service. Perform control testing and other risk management activities. Provide information in response to assessments and audits. Maintain an understanding of the systems, solutions, and technologies deployed on the ITS network. Qualifications and Skills: Experience in Information Security and/or Information Technology in an operations or support role Prior experience in an information security incident response role. Experience troubleshooting and/or securing computer systems and networks Experience with SIEM platforms Experience reviewing logs, scripting tasks, or creating structured queries/regex searches Familiarity with Cisco security products and operational practices Awareness of Information Security best practices and regulatory requirements Bachelor's degree in Computer Science, IS or Information Security a plus CISSP, CISM, GIAC and/or similar certifications a plus. Strong professional communication skills, both verbal and written. Strong understanding of computer systems and networking principles. Strong analytical skills and strong knowledge of data analysis tools. Ability to parse logs, create queries, and perform root cause analysis of events. Programming/Scripting skills are a plus. Understanding of logical security, user access and identity management. Detail oriented and process focused with a strong appreciation of completeness and accuracy. Ability to independently prioritize work and complete assignments with minimal oversight. Team player who is energized by problem solving and finding solutions together to deliver maximum benefit. Ability to adjust communication style/content to interact with IT and business professionals. Work closely with Cyber Security Architect and network security team to implement and maintain secure network design. Participate in planning and executing the SDLC process. Provide information security expertise to system development teams. Works with network monitoring and management applications and creating highly-reproduceable configuration scripts and templates. Category Qualification Security CISM (security) Security CISSP (security) Security GSEC (security)