Information Security Analyst

Join SecOps team to monitor and enhance cybersecurity measures

This opening is not available anymore. Do not try to apply for this job.

IRC - The International Rescue Committee

Open positions at IRC
Logo of IRC

Overview

Join SecOps team to monitor and enhance cybersecurity measures

You have:

  • Bachelor's degree or equivalent professional experience, preferably in Computer Information Systems, Management Information Systems, or Computer Science
  • Minimum 2 years in IT security operations, 1 year in a global organization
  • Strong knowledge of a Security Information and Event Management (SIEM) system, ITSM ticketing system, vulnerability management tools
  • Ability to analyze complex security issues and provide actionable recommendations
  • Excellent verbal and written communication skills for training and reporting purposes
  • Relevant certifications such as CEH or CompTIA Security+ are a plus
  • Experience in an operational information security role is highly desirable
  • English required; French and Arabic are a plus
  • Must possess or be actively working towards AZ500 Microsoft Azure Security Technologies

Job Description

The IRC has defined a new strategic mission & vision, along with initiatives and key processes to meet strategic objectives. The IT department provides reliable and scalable application development and infrastructure for the IRC's offices around the world, including technologically complicated locations. IRC's ITHQ department includes 150 professionals primarily in the US & Nairobi and over 40 counties supporting 20,000 staff globally.

Job Overview/Summary:

We are seeking a highly skilled Information Security Analyst to join our SecOps team. This role is purely operational and involves monitoring security information and event management (SIEM) systems, investigating security events, running vulnerability scans, and supporting the service desk. The ideal candidate will have experience with Microsoft Sentinel, ServiceNow ticketing, Qualys, and ZeroFox.

Major Responsibilities:

Cyber Incident Response and IT Security

• Continuously monitor the SIEM to identify and analyze potential security incidents and threats.

• Investigate security events escalated from the service desk or managed security service providers (MSSP), determining the root cause and implementing corrective actions.

• Run regular vulnerability scans using tools such as Qualys, and work with relevant teams to remediate identified vulnerabilities.

• Train the service desk on SecOps processes and procedures to ensure effective initial triage of security events.

• Compile and report on operational metrics to provide insights into the security posture and the effectiveness of security controls.

• Leverage a Security Information and Event Management (SIEM) system for advanced threat detection and response, utilize an IT service management (ITSM) platform for efficient ticket management, and employ a social media threat monitoring and protection tool.

• Research the latest in information technology security trends to keep up to date with the subject and use on the latest technology to protect information assets.

• Work with the team to develop a security plan for best standards and practices for the organization.

• Conduct frequent testing of simulated cyber-attacks to look for vulnerabilities in the systems and take care of these before an outside cyber-attack.

• Make recommendations to managers and senior executives about security advancements to best protect the organization.

• Help train junior colleagues in information security.

Key Working Relationships:

Position Reports to: Manager – Security Operations

Position directly supervises: NA

Indirect Reporting: Director, Security Operations and Engineering Team

Other Internal and/or external contacts:

Internal: IT staff across regions, HQ and Nairobi iHub, Safety and Security Team

Job Requirements:

Education

Bachelor's degree or equivalent professional experience. Prefer degree concentration in: Computer Information Systems, Management Information Systems, Computer Science

Work Experience

Min 2 years in IT security operations, 1 year in a global organization

Demonstrated Skills and Competencies

• Strong knowledge of a Security Information and Event Management (SIEM) system, ITSM ticketing system, vulnerability management tools.

• Ability to analyze complex security issues and provide actionable recommendations.

• Excellent verbal and written communication skills for training and reporting purposes.

• Certifications: Relevant certifications such as CEH, or CompTIA Security+ are a plus.

• Experience: Previous experience in an operational information security role is highly desirable.

Language Skills: English required; French and Arabic has more

Certificates or Licenses: Security+, or other security related certifications, which support adequate ability to support the design, deployment and operation of IT security solutions; must possess or be actively working towards AZ500 Microsoft Azure Security Technologies.

Working Environment: Hybrid, including remote and standard office work environment.

Travel: N/A

Working Environment:

Equal Opportunity Employer: IRC is an Equal Opportunity Employer. IRC considers all applicants based on merit without regard to race, sex, color, national origin, religion, sexual orientation, age, marital status, veteran status, disability, or any other characteristic protected by applicable laws. WOMEN, MINORITIES, PEOPLE LIVING WITH DISABILITIES AND LOCAL APPLICANTS ARE ENCOURAGED TO APPLY.

The IRC and IRC workers must adhere to the values and principles outlined in IRC Way - Standards for Professional Conduct. These are Integrity, Service, and Accountability. In accordance with these values, the IRC operates and enforces policies on Beneficiary Protection from Exploitation and Abuse, Child Safeguarding, Anti Workplace Harassment, Fiscal Integrity, and Anti-Retaliation.

IRC and IRC employees must adhere to the values and principles contained in the IRC WAY (Standards of Professional Conduct). These are Integrity, Service, and Accountability. In accordance with these values, IRC operates and enforces policies on beneficiary protection from exploitation and abuse, child protection, harassment on workplaces, financial integrity, and retaliation.

#LI-7

#LI-REMOTE

Qualifications

Potential interview questions

Can you describe a time when you had to respond to a security incident? This question assesses your experience with incident response and handling security breaches. Provide specific details of the incident and your role in managing it.
How do you stay updated with the latest cybersecurity threats? This evaluates your commitment to continuous learning in the field of information security. Pro members can see the explanation.
What tools have you used for vulnerability scanning? Pro members can see the explanation. Pro members can see the explanation.
Describe a scenario where you had to communicate technical information to non-technical stakeholders. Pro members can see the explanation. Pro members can see the explanation.
What approach do you take when training junior team members? Pro members can see the explanation. Pro members can see the explanation.
Added 1 year ago - Updated 1 year ago - Source: rescue.org