As a Security Analyst, you will be at the forefront of safeguarding our organization's critical information assets.
You will manage security incidents, handle vulnerability assessments, and ensure compliance with industry standards.
Your role will also involve supporting security awareness campaigns, collaborating with teams to mitigate risks, and continuously enhancing our security posture through the administration of various tools and technologies.This role also involves conducting access control audits, performing risk analysis and management, and implementing security measures to comply with various certifications.Key Responsibilities:Detect, analyze, and respond to information security incidents.Coordinate incident resolution and ensure proper documentation for each case.Identify, evaluate, and mitigate vulnerabilities in the organization's systems and networks.Develop and maintain vulnerability scanning processes and tools to ensure a robust security posture.Manage and maintain security tools such as EDR, SIEM, password managers, IDS, and O365 security and compliance.Ensure all tools are up to date and properly configured.Collaborate with operational teams to identify and assess security risks.Develop mitigation plans and track risk management efforts.Develop procedures and automations to ensure compliance with certifications such as ISO 27001, HDS, and ENS.Coordinate audits and maintain adherence to these certifications.Follow and execute actions established in the Security Master Plan.Participate in reviewing and updating the plan as needed.Plan and coordinate penetration testing exercises to assess the security of systems and applications.Manage internal or external teams conducting the pentest exercises.Conduct regular audits to ensure access controls are correctly implemented and functioning.Review and update access control policies as necessary.Develop and participate in information security awareness campaigns for all employees.Create educational materials and conduct workshops and seminars.Continuously assess and improve security tools and processes.Research new technologies and security trends to implement improvements.Qualifications:Spanish: Native or fluent.English: Professional working proficiency.Higher Education Degree or University Degree in Computer Science, Information Security, or a related field.A minimum of 3-5 years of experience in a similar information security role.In-depth understanding of information security concepts and practices.Experience with security tools and technologies across various domains: Perimeter security (FW, IDS), Endpoint/Server protection (EDR), SIEM, O365 protection.Knowledge of security regulations and certifications: ISO 27001, ENS.Ability to analyze and respond to security incidents.Excellent communication skills and ability to work in a team.Relevant security certifications, both general and vendor-specific, will be considered a plus.Ability to work in dynamic environments with multidisciplinary teams.Strong analytical and critical thinking skills.Attention to detail.Ability to handle confidential information.
#J-18808-Ljbffr