IT Security Analyst

The IT Security Analyst, under the direction of the IT Security Administrator and/or Chief Information Officer will review and respond to the daily tasks of IT related security alerts/issues to ensure IT security across the enterprise.  This position ensures information security controls are prioritized and maintained when users and/or vendors require access to internal databases/applications.  Analyzes and assesses vulnerabilities in the infrastructure (software, hardware, networks), investigates available tools and countermeasures to remedy the detected vulnerabilities, and recommends solutions and best practices.  

Will participate in IT on call rotation and may assist with system administration / networking tasks as needed.

Facilitate and promote activities to create information security awareness within the organization,  including matters of strict confidence.  Includes preparation of complex computer spreadsheets.

Assists with security risk assessments regarding security issues and after action reviews as appropriate.

Monitor compliance with information security policies and procedures, referring problems to the appropriate department manager. Monitor the internal control systems to ensure that appropriate access levels are maintained.

Continue to develop skills, knowledge, and ability to improve processes and procedures as well as to keep updated on trends and developments in the industry. This includes meeting annual personal development goals.

Recommends information security policies and procedures to ensure security strategies are followed to meet the organizational security goals and standards.

Assists in Identifying and resolving risks in accordance with the Organization’s security risk assessment processes.

Follows system security plans implemented throughout the entire network of the Organization and uphold the responsibilities of an information security professional.

Act as a liaison to the City for IT security related topics and monitor compliance with security standards. 

Monitor the internal controlling systems to ensure accessibility whenever it is required by the users.

Report information security incidents as per the incident response policy and manage RCA and remediation, as directed by the Chief Information Officer. 

Keeps Incident response plans current and relevant

Assists with information security programs as needed and when instructed by the Chief Information Officer.

Perform vulnerability scanning on critical systems regularly and report gaps to appropriate team leads.

Collaborate with teams to provide subject matter expertise on security of servers, applications, and networks.

The IT security analyst will participate in the planning and implementation of security requirements for IT projects and make recommendations for security applications to assist with the implementation of changes to work methods and procedures, making them more effective to strengthen security measures.

Analyzes and assesses suspected or actual damage to the data/infrastructure as a result of security incidents, examines available recovery tools and processes, and recommends and/or implements solutions.

Tests for compliance with security policies and procedures. Will assist in the creation, implementation, and/or management of security solutions as directed by Chief Information Officer.

Performs other related duties as required/assigned.

Education and Experience:

Bachelor’s degree in Computer Science, Information Systems or related field and/or any equivalent combination of training, education and experience. 

Minimum of 1 year of documented information technology security work experience. 

Additional experience desired in areas such as systems security analyst, network and/or systems administration, computer operations and user support, etc.

Must have proven proficiency with Microsoft Active Directory Management, Group Policy Object management, GPO development, testing, implementation and troubleshooting.

Windows Server 2019 Administration, and understanding Windows Event Management experience is required.  Networking and Next Gen Firewall experience highly desired. Knowledge and experience of EDR and XDR solutions preferred. Scripting capabilities including Powershell and or Python preferred

Knowledge of host hardening, auditing, logging and monitoring, network security, security analytics, anomaly detections, etc.

Information security certifications (e.g. Sec or other IT Security certs) preferred. 

 Licenses and Certifications:

Valid Class C Driver’s License and satisfactory motor vehicle record (desirable).

Knowledge, Skills and Abilities:

Knowledge of bookkeeping and accounting principles, practices, methods, and procedures.

Knowledge of modern office practices, procedures, and equipment - including computers. 

Ability to perform mathematical calculations.

Experience with Microsoft Office products, specifically Windows, Excel and Word.

Ability to deal courteously and diplomatically with the public and be tactful with difficult customers.

Ability to communicate clearly and effectively, both orally and in writing.

This class specification should not be interpreted as all inclusive.  It is intended to identify the major responsibilities and requirements of this job.   The incumbents may be required to perform job-related responsibilities and tasks other than those stated in this specification.