Job TitleCyber Security Analyst
Job Location: Remote
Job Summary:
The Cyber Security Analyst is responsible for a variety of tasks related to the general compliance and security of all systems to help identify risks to the confidentiality, integrity, and availability of ScriptPro products and services. This includes maintaining compliance with applicable regulatory standards and End of Life (EOL) deadlines. This is a position that requires a self-starter and a fast learner who can quickly understand ScriptPro’s products and environments.
As part of the Information Security Team, the successful candidate will identify, articulate, and drive to completion gaps in the Company’s product security and compliance initiatives based on the results of ongoing internal audits and threat hunting. In addition, you will be expected to contribute to operational requests, incident response process, architecture review, vulnerability scanning and security testing processes.
Reports To: Manager, Security Operations
Schedule: Generally, Monday through Friday, 8am-5pm CST. This is a remote position. Regular and punctual attendance is an essential function of every job at ScriptPro.
Scope of the Role:
- Monitor & audit environments, systems, servers, firewalls, users and applications
- Determine versioning & compliance levels based on internal and external drivers
- Identify gaps in security operations/systems management and develop mitigation strategies
- Conduct threat research applicable to our environment and products
- Review and conduct analysis on event logging systems, firewalls, anti-virus and end point detection systems, as needed.
- Monitor and stay current on industry trends related to our environment and products
- Run security testing via Static Application Security Testing (SAST), Dynamic Application Security testing (DAST) and Software Composition Analysis (SCA) tools
- Run vulnerability scans via Qualys and Tenable
- Enter findings into Team Foundation Server (TFS), Governance Risk Management and Compliance (GRC), Information Systems or Computer Science support systems, as applicable
- Assist other ScriptPro teams in reporting key findings that impact other departments
- Assist in Incident Response Planning and execution
- Act as an advisor on risk and/or compliance related projects
Education and Experience Requirements:
- Minimum of 2+ years combined experience in any of the following: Information Security Architecture, Data Analysis, Intelligence Analysis, System & Security Auditing, Penetration Testing, Microsoft Server OS and SQL Database management tools and configuration
- Bachelor’s degree in computer science, business or relative discipline, or equivalent experience
- Able to obtain Industry certifications – Security+, CySA+ or equivalent
- Proficient with Microsoft Windows technology, Microsoft Office Suite, and Microsoft Teams
- Proven ability to multi-task while planning and working to a deadline
- Must be able to obtain Department of Defense security clearance, post-date of hire. See Standard Form 86 at gsa.gov to preview requirements.
Preferred Skills
- Knowledge of ScriptPro products and processes
- Knowledge of various Cyber Security Frameworks, Payment Card Industry (PCI) and HIPAA regulations
- Knowledge of the software development lifecycle process
- Government/Department of Defense IT experience or clearance
Attributes Desired:
- Approach your work with a collaborative spirit
- Strong interpersonal communication skills
- Organized, independent self-starter
- Strong analytical problem solving skills
At this time, ScriptPro is not sponsoring H1B visas for this position.
ScriptPro is an Equal Opportunity Employer
Please visit www.scriptpro.com to learn more about the mission of our company.