onsite
Information Security Analyst III - CoServ Job Search
Security Engineer
Senior Information Security Analyst responsible for managing vulnerability programs, leading incident response, conducting risk assessments, and ensuring the confidentiality, integrity, and availability of critical systems using advanced monitoring and scripting tools.
About the role
Key Responsibilities
- Lead the Vulnerability Management program: scan, prioritize, and remediate findings across on‑premise and cloud environments.
- Coordinate and execute Incident Response activities, including detection, containment, eradication, and post‑incident analysis.
- Perform continuous security monitoring using SIEM, IDS/IPS, and threat intelligence feeds to identify and mitigate emerging threats.
- Conduct risk assessments and security audits to evaluate the impact of vulnerabilities and recommend mitigation strategies.
- Develop and maintain security automation scripts (e.g., Python) to streamline detection, reporting, and remediation workflows.
- Collaborate with IT, engineering, and business units to embed security controls into system design and operational processes.
Requirements
- 3+ years of hands‑on experience in vulnerability management, incident response, or related information security roles.
- Proficiency with security tools such as Nessus, Qualys, Splunk, or similar SIEM platforms.
- Strong understanding of risk assessment methodologies and regulatory frameworks (e.g., NIST, ISO 27001).
- Experience scripting/automation using Python or comparable languages.
- Knowledge of cloud security concepts and best practices for platforms like AWS or Azure.