The Junior Security Analyst is responsible for monitoring the stability, integrity, and security of organization systems. This is achieved by monitoring, testing, and reporting on local area networks (LANs), wide area networks (WANs), as well as enterprise, SaaS, IaaS, and web-based systems. The Junior Security Analyst also provides support to other IT staff and end-users as required.
- Monitor the organization’s infrastructure to keep watch for security breaches, investigating, alerting, and documenting if/when one does occur.
- Create and maintain documentation as it relates to security breaches, the extent of damage associated with breaches, as well as suggested and taken remediation actions.
- Implement and monitor security measures for the protection of computer systems, networks, and information including:
- Performing security audits of LANs, WANs, remote access, servers, SaaS, IaaS, and web-based systems.
- Monitoring and auditing all NED systems for evidence of unauthorized access and/or activity regularly.
- Performing forensics on security incidents.
- Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security incidents
- Contribute to the security incident response process, in accordance with policy and in conjunction with the appropriate IT staff.
- Ensure the organization knows as much as possible, as quickly as possible, about security incidents.
- Collaborate with Senior Systems Security Engineer to assess near and long-term network and system security needs.
- Identify and define system requirements as they relate to security.
- Assist with preparation and documentation of standard operating procedures and protocols.
- Assist in the development of technical solutions and new security tools to help monitor and mitigate security vulnerabilities.
- Conduct research on enterprise products, services, protocols, and standards, making recommendations as warranted.
- Work in conjunction with the Technical Director, Senior Systems Security Engineer, and other IT staff to ensure adequate segregation of duties in the performance of security-related tasks and assignments.
- Provide guidance to other members of the IT team.
- Attend training classes in order to stay abreast of new technologies.
- The level of responsibility and independence in assigned tasks will increase with experience.
- Bachelor’s degree or equivalent experience.
- 2 – 4 years of working experience in monitoring security systems.
- Experience with the use of ITSM tools (SolarWinds Service Desk, ZenDesk) for user-level request and incident management, as well as for asset discovery and management.
- Experience with endpoint logging agents (Crowdstrike, Windows Defender).
- Experience with MS Azure Sentinel, Azure Event Hub, Azure Log Analytics Workspace, MS Azure, and MS Azure AD and Security tools is preferred.
- Other Qualifications:
- Through understanding of the latest security principles, techniques, and protocols.
- Working technical knowledge of securing database, network, server, desktop, and mobile operating systems, SaaS, Iaas, and web-based systems.
- Familiarity with general SIEM and enterprise logging concepts.
- General firewall knowledge.
- Proven ability to develop standards and procedures.
- Familiarity with search/query languages.
- Authorized to work in the United States.
- Excellent interpersonal, written, and oral communication skills.
- Self-motivated and directed, able to self-manage work and tasks against SLAs and objectives.
- Proven analytical and problem-solving abilities.
- Ability to effectively prioritize tasks in a high-pressure environment.
- High degree of organization and initiative, with keen attention to detail.
- Ability to present ideas in user-friendly language.
- Experience working in a team-oriented, collaborative environment.
This position is part of the NED Bargaining Unit.
Applications must include a cover letter, resume, desired salary, and contact information for three professional references, of which one should be a supervisor. Please, no phone call inquiries.
The NED is an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, sex, gender identity or expression, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status, or any other legally protected characteristics covered by applicable law. The NED is committed to working with and providing reasonable accommodation for all qualified individuals and bases all employment decisions on qualifications, merit, and business need. The NED believes that diversity and inclusion amongst our team members are critical to our success as an organization operating globally and seek to recruit, develop, and retain the most talented people from a diverse candidate pool.
For more information, please visit our website at www.ned.org or firstname.lastname@example.org.