Information Security Analyst

Vulnerability Management:

• →Review vulnerability reports.
• →Research scalable solutions for vulnerability remediation.
• →Collaborate with Support/NOC to ensure remediations have minimal impact on clients and facilitate maintenance windows.
• →Work with CS/Engineering to script and automate remediations.
• →Track progress in ticketing system, including master tickets for multi-client initiatives and sub tickets for individual clients.
• →Address vulnerabilities for clients' third-party vulnerability management, including overlap with Cavelo, and apply remedies to other clients.

Risk Management and Due Diligence:

• →Provide accurate and timely responses to Due Diligence Questionnaires (DDQs).
• →Review and analyze findings from risk assessments and penetration tests for Atlas and clients.
• →Address identified vulnerabilities and recommend remediation strategies.
• →Participate in Business Impact Analyses and tabletop exercises to enhance organizational resilience.

Industry Benchmark Alignment and Standards Updating:

• →Start measuring alignment with Microsoft benchmarks in Intune and work on increasing the score.
• →Address vulnerabilities and issues identified in workstation builds, cloud infrastructure configurations, and security configurations.
• →Harden systems to enhance security across workstations, cloud infrastructure, and security configurations.

SOC 2 Maintenance and Additional Security Tasks:

• →Perform test restores.
• →Conduct reviews of our KnowBe4 phishing tests and training.
• →Review SIEM logs.
• →Assist in addressing cybersecurity incidents.
• →Work with NOC and outsourced SOC on remediation runbooks.
• →Perform additional tasks as assigned to support the security team and organization

• Strong understanding of cybersecurity principles and practices.
• Experience with vulnerability management and remediation.
• Familiarity with Microsoft Intune and security benchmarks.
• Excellent analytical and problem-solving skills.
• Ability to work collaboratively with cross-functional teams.
• Strong communication skills, both written and verbal.
• Strong ability to work independently
• Experience with security tools (SIEM, IDS/IPS, vulnerability scanners)
• Experience with RMM/SOAR and other automation platforms.
• Experience scripting
• Experience writing runbooks.

• Experience working in an MSP environment (preferred, but not required)
• Relevant certifications (AZ-500, SC-900, SC-300, CompTIA Security+, etc.)