O.C. Tanner is the global leader in software and services that improve workplace culture through meaningful employee experiences. Our Culture Cloud is a suite of apps designed to enhance the employee experience with strategic recognition, service awards, wellbeing, leadership, and events that help people thrive at work. Our Culture by Design approach provides expert services to organizations looking to create great workplaces.

Our global team of 1,500 people hail from 58 countries and speak 62 languages. As programmers, researchers, designers, client professionals and craftspeople we create the tech, tools and awards that connect employees to purpose at thousands of companies. Join us as we help people all over the world thrive at work.

Summary:

The primary purpose of this position is to help coordinate and report on cyber incidents impacting clients. This position will complete tasks and projects designed to ensure security of the organization’s systems and infrastructure assets. An Information Security Analyst protects against unauthorized access, modification, or destruction. This role works with end users to determine needs of individual departments, implements policies or procedures, and tracks awareness and training through the organization.

Duties:

Conduct investigation, assess impact, and analyze security incidents.

Make decisions regarding risk and measures for computer and network security.

Experience in designing, developing, and maintaining RESTful APIs.

Assist in the development and implementation of the system-wide incident response and handling program.

Internally assess, evaluate, and make recommendations to management regarding the company’s incident response capabilities.

Ability to integrate third-party APIs and services into existing applications.

Provide Incident Response (IR) support when analysis confirms actionable incident.

Provide threat and vulnerability analysis as well as security advisory services.

Analyze and respond to previously undisclosed software and hardware vulnerabilities.

Investigate, document, and report on information security issues and emerging trends.

Proficiency in using log query languages (e.g., SQL, KQL, Splunk SPL) to analyze and interpret log data.

Communicate with site personnel about security awareness and develop security awareness materials.

Assess computer hardware, software, and systems for security risks or violations and work with ITS and campus staff and technology vendors to recommend solutions.

Develop strategies to address awareness and training for all stakeholders as well as technical solutions.

Other duties as assigned.

Requirements:

Knowledge of information security risk management frameworks and compliance practices.

Understanding of securing network technologies, client, and server operating systems.

Ability to develop security standards and guidelines based on best practices and industry standards.

Skills to respond to, analyze, and communicate information security incidents.

Excellent interpersonal, communication, and presentation skills, including formal report writing.

Well versed in incident response frameworks and methodologies.

Preferred Qualifications:

Skills in project management, documenting risk, and compliance activities.

Ability to integrate third-party APIs and services into existing applications.

Strong troubleshooting skills to diagnose and resolve issues using log queries.

Experience & Education:

1-2 years of experience with advanced IT skills and information security experience and expertise.

Bachelor’s degree in information technology or related field preferred.

Information security related training or certifications, such as CIRT and CISSP, or GCIH preferred.

Information Security Analyst

Job description

Explore more

Career resources

Similar jobs