Lead Information Security Analyst

Job Description

• Makes recommendations to Business and Technology leadership to ensure alignment of infrastructure applications and data with current and future security standards.
• Assists with governance, risk, and compliance of SOC II and NIST audits for all systems, working with internal audit staff with regular tests and reports.
• Mentor additional security analysts in security best practices as well as Envoy policies and procedures.
• Assist the Envoy Global security manager and Chief Information Security Officer in coordinating quarterly audits for targeted applications and systems.
• Contributes to Envoy Global’s security policies, procedures, controls as well as their enforcement and periodic review.
• Provides input into security incident response procedures; leads security incident response activities.
• Evaluates applications, both in-house and purchased to identify security risk and vulnerabilities.
• Facilitates discussions with members of IT and Project Management teams to design and implement security standards.
• Review and complete customer prospect security questionnaires and existing customer reassessments.
• Assists with security review of Envoy vendors.
• Stays current with emerging security threats, promoting latest threats and best practices to multiple departments within Envoy Global product and technology.
• Assists in efforts to assess, mitigate, and prevent system malware/ransomware attacks on corporate assets; maintains risk assessment of all systems and applications; and advise management on any critical security issues with recommended remediation.
• Assist in building a culture of security by providing tips, updates, and training.
• Assists in development, design, and implementation of disaster recovery plans and procedures for Envoy Global offices and production applications.

Requirements

• Bachelor's degree in Information Technology or other technology-related discipline.
• A minimum of 3 years of IT experience in IT security administration.
• 2-3 years supporting Active Directory and Azure Active Directory including User management, GPO, Conditional Access, SAML Authentication.
• At least one certification in the following (CEH, CISM, CompTIA, CISSP,CISA).
• Strong knowledge of vulnerability management principles and procedures, including operations and reporting from security tools (Tenable, Nessus, nMap, ZAP, SIEM).
• Preference for candidates that have experience within the legal services industries and/or technology industries.
• Cloud based computing general principles, favoring Microsoft Azure environments using Virtual Machines, PAAS services, Virtual networks, and firewalls.
• Solid understanding of IT policies, laws, standards and frameworks applicable to the specific technical role e.g. ISO31000, ISO27001, COSO and NIST
• Knowledge of using a SIEM (Splunk, USM, Sentinel, etc.).  Principles of log ingestion and aggregation for security related events, dashboards, and reports.
• Ability to write basic scripts in Python,PowerShell, and / or other scripting languages.
• Self-motivated and results-driven individual.
• Possesses a sense of urgency and ability to multi-task in a fast-paced environment.
• Ability to work with different teams; Technical and non-technical, to assure compliance with the company policies.
• Be available 24x7 to respond to and resolve critical security incidents.