It Security Analyst

Summary

The IT Security analyst is responsible for ensuring that the company's digital assets are protected from unauthorized access, ensuring systems are up to date, that incident response and disaster recovery plans are in place and working, this includes securing both online and on-premises infrastructures, analyzing metrics and data to filter out suspicious activity, finding and mitigating risks before breaches occur. If a breach would occur, the Security Analyst supports the efforts to counter the attack.

The Security Analyst is responsible for keeping the company's security systems up to date and creating documentation and planning for all security-related information, including incident response, disaster recovery plans and playbooks.
The Security Analyst is responsible for ensuring users globally receive timely cyber security support for their day-to-day IT operation, executes the global cyber security ITIL support processes, use of systems for incident and problems and set plans for actions to be taken. Supervises security and executes the implementations and operations which are necessary to achieve a business optimal level of security and compliance.

The Security Analyst is responsible for executing the daily security support operations and processes. This includes all cyber security systems, support & change management systems within Hyperion.
The Security Analyst is responsible for generating reports for IT administrators and business managers to evaluate the efficacy of the security policies in place. The Security Analyst will help to make the necessary changes for a more secure network and may also create training programs and modules to educate employees and users on proper security protocol and compliance.

Essential Duties and Responsibilities

• Monitoring security events, accesses, alerts, and incidents.
• Support Cyber security incidents and problem processes.
• Analyzing potential security breaches to identify root causes and lead mitigation activities.
• Support internal and external audit processes
• Administration of cyber security infrastructure and services following Global Network and Security Manager guidelines, including:
  • Support implementation, development, enhancement and usage of IT Security systems
  • Perform lifecycle planning, architecture and IT capacity planning
  • Perform daily operational analysis, troubleshooting system issues, analyzing planning and capacity results together with vendors and partners.
  • Managing training of new and experienced users
  • Develop and maintain system documentation
  • Vendor Management
• Perform reporting, communication, training, documentation within cyber security and compliance area
• Escalation point for cyber security related issues, training the Service Desk if needed.
• Perform proper IT planning and life cycle management for cyber security systems within the area.
• Lead risk and impact analysis of systems, support audits and set action plans.
• If required, act as project manager supporting cyber security, audit, and compliance related projects.

General responsibilities also include:

• Serve as IT Security team member, helping develop Hyperion Cyber Security operations strategically both short and long term
• Contribute to a healthy work environment by reporting accidents, incidents and risks, and comply with applicable regulations.

Other specific responsibilities include:

• Conducting security assessments through vulnerability testing and risk analysis
• Performing both internal and external security audits
• Continuously updating the company’s incident response and disaster recovery plans
• Verifying the security of third-party vendors and collaborating with them to meet security requirements

Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

Role may require domestic and international travel.

Education and/or Work Experience

• Bachelor's degree or equivalent.
• 2 + years of cyber security experience, with experience working with intrusion prevention and response and operations of international IT infrastructure.
• CISSP or similar certifications is an advantage

Technical Skills/Physical Requirements

• Experience with global enterprise-wide cyber security system operations, program implementations and integration
• Good skills in managing IT security lifecycle, processes, and change management.
• Knowledge of auditing and risk management
• Very good fluency in English, both verbal and written, with the ability to effectively communicate with stakeholders, colleagues, employees, and partners.
• Need to be able to work flexible working hours and on-call as required.
• Ability to work on your own initiative and with a proactive approach
• Proven self-management skills including managing your own learning.
• Experience of ethical hacking, including penetration testing, Computer forensics and Reverse engineering is a plus.