IT Security Analyst

2 months ago

Houston, United States Aramco Services Company Full time
Job DescriptionJob Description

Basic Function

The IT Security Analyst III position applies mid-level principles to ensure that the organization’s technology initiatives align with its governance policies, risk management strategies, and compliance with organizational standards. The analyst will work closely with various departments to maintain governing documents, assess and mitigate risks, manage compliance audits, and maintain the integrity of the security posture.

 

The analyst will assist in safeguarding the organization’s network and systems by identifying, assessing, and mitigating vulnerabilities, via a proactive approach to security and a thorough understanding of the latest cybersecurity threats and trends.

 

The analyst will conduct authorized, simulated cyberattacks on the organization’s systems, networks, and applications to identify vulnerabilities before they can be exploited by malicious actors.

 

The analyst will develop and implement strategies to increase information security awareness within the organization. The role involves creating educational programs and campaigns to inform employees about the importance of cybersecurity, potential threats, and best practices to maintain security.

 

The analyst will develop, maintain, and execute disaster recovery strategies and plans that ensure the continuity of the organization’s critical business functions in the event of a disaster. This role involves planning for both natural and man-made disasters, ensuring minimal disruption to operations and data integrity.

 

The Analyst will follow-up with higher level IT Security Analysts or his/her immediate supervisor to seek further information necessary for proper direction and pursue completion of objectives but may also work unsupervised and able to interact with Unit and Division heads across the enterprise providing consultancy and direction to business and IT teams in line within established corporate security policies and processes.

 

Duties & Responsibilities

General requirements of the IT Security Analyst:

  • Conduct risk assessments and vulnerability testing in accordance with NIST standards.
  • Manage and support assessments and audits.
  • Ensure compliance with organizational standards, and other relevant industry frameworks.
  • Develop, implement, and monitor security policies and procedures.
  • Collaborate with IT and business units to integrate GRC objectives with corporate strategies.
  • Maintain a central repository for audit evidence and documentation.
  • Provide guidance on risk management and compliance best practices.
  • Communicate effectively with stakeholders regarding compliance issues and risks.
  • Proactively identify areas for process improvement and control enhancements.
  • Design and deliver engaging cybersecurity awareness training sessions for employees at all levels.
  • Develop and distribute informational materials, such as newsletters, brochures, and flyers, that highlight security best practices.
  • Coordinate with the IT department to create simulated phishing exercises to test employee awareness and preparedness.
  • Stay current with the latest cybersecurity trends, threats, and prevention techniques.
  • Respond to inquiries from staff regarding cybersecurity and online behavior best practices.
  • Perform vulnerability assessments and penetration testing to identify and analyze risks.
  • Manage and configure vulnerability management tools.
  • Prioritize vulnerabilities based on severity and potential impact to the business.
  • Work with IT teams to facilitate patch management and remediation efforts.
  • Develop and maintain vulnerability management policies and procedures.
  • Provide technical support for vulnerability management projects.
  • Research and assess emerging security threats and vulnerabilities.
  • Conduct vulnerability assessments using various tools and techniques, including scanning for open ports and testing for weak passwords.
  • Plan, design, and execute penetration tests to evaluate the effectiveness of existing security measures.
  • Identify and assess security vulnerabilities and prioritize them based on risk.
  • Document findings in detailed reports and present them to stakeholders.
  • Provide recommendations for remediation and advise on security best practices.
  • Stay up to date with the latest security trends, threats, and countermeasures.
  • Develop and implement comprehensive disaster recovery plans.
  • Conduct risk assessments to identify potential threats to business operations.
  • Coordinate with various departments to ensure effective recovery strategies are in place.
  • Organize and manage disaster recovery drills and simulations.
  • Provide training and awareness programs to employees on disaster response protocols.
  • Monitor and report on the organization’s recovery capabilities.
  • Manage the disaster recovery budget and resource allocation.
  • Stay informed about the latest trends and advancements in disaster recovery and business continuity.

 

Education and Experience

  • Bachelor’s degree program in a technical field such as Computer science, Management Information Technology (MIS), Engineering, and Mathematics is strongly preferred.  May consider candidates with technical school training or military training and seven (7) years’ experience.  May consider HS/GED candidates with ten (10) years’ work experience with a working knowledge of LAN systems and the maintenance and upkeep requirements of an information management system in lieu of Bachelor’s Degree. 
  • Five (5) year’s work experience in computing environment or Governance Risk and Compliance, Cybersecurity Awareness, Vulnerability Management, Pentesting or Disaster Recovery fields.
  • Experience with in cybersecurity awareness, excellent presentation skills, skills to design effective and engaging training materials.  Ability to measure and report on the effectiveness of awareness programs.
  • Experience with a variety of operating system experience, Windows/Linux/Unix in a functional capacity. 
  • Proficiency in vulnerability scanning tools and methodologies.
  • Security and/or Networking experience and understanding in the following:
    • Working knowledge of general security methodologies, concepts and terminologies.
    • Basic routing principles and networking fundamentals
    • Well known protocols and services (FTP,HTTP,SSH,SMB,LDAP)
    • Packet Analysis Tools (TCPDUMP, Wireshark, Ngrep)
  • Experience with penetration testing tools and frameworks, strong knowledge of programming languages
  • Experience in disaster recovery planning and implementation, excellent organizational and project management skills
  • Must be able to communicate and comprehend accurately, clearly and concisely in English at a level required to perform the job as outlined.  Must be able to communicate technical details a clear, understandable manner.
  • Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette.  Must exemplify strong analytical kills, consensus building, and strong collaboration skills are crucial.

    NO THIRD-PARTY CANDIDATE ACCEPTED

Powered by JazzHR

DmckeW3bXC

  • Cyber Security Analyst

    2 weeks ago

    Houston, United States Gravity IT Resources Full time

    Job Title: Cyber Security Analyst Job Type: Direct HireLocation: Houston, TX (Hybrid onsite)Our client is a leading producer in the North American oil and gas industry. They understand the critical importance of cybersecurity in protecting their infrastructure, data, and operations. To bolster their cybersecurity efforts, they are seeking a skilled Cyber...

  • Cyber Security Analyst

    2 weeks ago

    Houston, United States Gravity IT Resources Full time

    Job Title: Cyber Security Analyst Job Type: Direct HireLocation: Houston, TX (Hybrid onsite)Our client is a leading producer in the North American oil and gas industry. They understand the critical importance of cybersecurity in protecting their infrastructure, data, and operations. To bolster their cybersecurity efforts, they are seeking a skilled Cyber...

  • Security Analyst

    7 days ago

    Houston, United States Aldine ISD Full time

    Position Type: Technology/Cybersecurity Analyst - Technology Date Posted: 8/22/2024 Location: Bamberg Prof Dev And Resource Ctr Closing Date: 09/04/2024 Description: Please view the job description for more information. Attachment(s): Security Analyst

  • Information Security

    7 days ago

    Houston, United States Stellar Bank - Stellar Bancorp, Inc. Full time

    1. Assist with risk assessments as well as control testing to identify issues and work with team members to identify solutions to mitigate gaps or findings. 2. Participate in developing information security processes, policies, and reporting. 3. Supp Security, Security Analyst, Information, Analyst, Technology, Banking, Certification

  • Security Intelligence Analyst

    1 month ago

    Houston, Texas, United States AIG Full time

    The Security Intelligence Analyst works in AIG Travel's 24/7/365 Travel Security Operations Center and provides support for daily operations as necessary.AIG Travel's security analysts must have a well-rounded background in international relations and security with strong writing and analytical skills.Analysts must have excellent research and global...

  • Security Intelligence Analyst

    1 month ago

    Houston, United States AIG Full time

    The Security Intelligence Analyst works in AIG Travel’s 24/7/365 Travel Security Operations Center and provides support for daily operations as necessary.AIG Travel's security analysts must have a well-rounded background in international relations and security with strong writing and analytical skills.Analysts must have excellent research and global...

  • IT Security Analyst

    7 days ago

    Houston, United States Aramco Services Company Full time

    Basic Function The IT Security Analyst III position applies mid-level principles to ensure that the organizations technology initiatives align with its governance policies, risk management strategies, and compliance with organizational standards. The analyst will work closely with various departments to maintain governing documents, assess and mitigate...

  • Senior Security Analyst

    3 months ago

    Houston, United States Clearpoint Full time

    TITLE: Senior Security Analyst LOCATION: Northwest Houston TYPE: Permanent Senior Security (SOC) Analyst Position Type: Full-Time Please note that this role is an In Office position with an expectation to be onsite four days a week. About the role: The security team at the organization is seeking an experienced and enthusiastic senior analyst to join the...

  • Cyberark Security Engineer

    1 week ago

    Houston, United States eTek IT Services, Inc. Full time

    Job DescriptionJob DescriptionRole : IT Analyst CyberarkLocation: Houston TXExperience : 7+ years& & & & & & & & & & & & & & & W2 Contract& & & & Required Skillsoil and gas company preferred powershell active directory Identity Access Management CyberarkAdditional SkillsJob DescriptionClient s is seeking an& IAM Analyst& to support their Lower48 business....

  • Cyberark Security Engineer

    2 weeks ago

    Houston, United States eTek IT Services, Inc. Full time

    Job DescriptionJob DescriptionRole : IT Analyst CyberarkLocation: Houston TXExperience : 7+ years& & & & & & & & & & & & & & & W2 Contract& & & & Required Skillsoil and gas company preferred powershell active directory Identity Access Management CyberarkAdditional SkillsJob DescriptionClient s is seeking an& IAM Analyst& to support their Lower48 business....

  • Technical Business Analyst

    1 week ago

    Houston, United States Georgia IT Inc Full time

    Technical Business Analyst (CyberArk Role-Based Access Project Location - Houston, TX (Hybrid) 1 Plus years contract Rate - DOEUS Citizen, Green Card, GC EAD, and H4 EAD can apply for this role, No third party corp to corp. Our client is looking for a skilled Technical Business Analyst to join their team remotely from anywhere in India. This role is...

  • IT Security Analyst III

    7 days ago

    Houston, United States Tokio Marine HCC Full time

    IT Security Analyst III (Senior) Houston, TX (Onsite) Position Type: Full-Time Please note that this role is an in-office position with an expectation to be onsite four days a week. Tokio Marine HCC, a global power in the specialty insurance industry, is seeking an IT Security Analyst with a passion for problem-solving, learning and growing, and a strong...

  • Senior Security Analyst

    7 days ago

    Houston, United States Tokio Marine HCC Full time

    Senior Security (SOC) Analyst Position Type: Full-Time Please note that this role is an In Office position with an expectation to be onsite four days a week. Tokio Marine HCC, a global power in the specialty insurance industry, is seeking a Senior Security Analyst with a passion to lead, defend, and make an impact in our Corporate IT group. What we...

  • IT Analyst

    2 weeks ago

    Houston, United States eTek IT Services, Inc. Full time

    Job DescriptionJob DescriptionRequired Skillsoil and gas company preferred powershell active directory Identity Access Management CyberarkAdditional SkillsJob DescriptionClient s is seeking an& IAM Analyst& to support their Lower48 business. The IAM Analyst will be& responsible for enabling lifecycle management and working with the business to understand how...

  • OT Security Analyst

    1 week ago

    Houston, United States INSPYR Solutions Full time

    Title: OT Security Monitoring Analyst Location: Houston, TX 77084 (Onsite 3 days per week) Duration: 12+ month contract Work Requirements: US Citizens, GC Holders, or Authorized to Work in the U.S. Qualified and interested candidates should email their resumes to Slater Davidson at sdavidson@inspyrsolutions.com. Skillset / Experience: INSPYR Solutions is...

  • Sr Security Analyst

    1 month ago

    Houston, United States Insight Global Full time

    Can be based in Houston or Dallas TX, Kennesaw GA, Minneapolis MN, or Kansas City MO. $120,000 to $140,000 per year annual salary.Exact compensation may vary based on several factors, including skills, experience, and education.Benefits: Generous paid time off and 12 company paid holidays 401 (k) Retirement plan 6% company matchHealth, dental, and vision...

  • Sr Security Analyst

    1 month ago

    Houston, United States Insight Global Full time

    Can be based in Houston or Dallas TX, Kennesaw GA, Minneapolis MN, or Kansas City MO. $120,000 to $140,000 per year annual salary.Exact compensation may vary based on several factors, including skills, experience, and education.Benefits: Generous paid time off and 12 company paid holidays 401 (k) Retirement plan 6% company matchHealth, dental, and vision...

  • Security Intelligence Operations Center Analyst

    3 months ago

    Houston, United States CEVA Logistics Full time

    YOUR ROLE The Security Intelligence Operations Center SIOC Analyst II works in a 24/7/365 Security Intelligence Operations Center supporting the development of tactical and strategic security and intelligence products to inform protection and risk mitigation efforts in support of CEVA assets, operations, and people. A SIOC Analyst II monitors regional...

  • Security Intelligence Operations Center Analyst

    3 weeks ago

    Houston, United States CEVA Logistics Full time

    YOUR ROLE The Security Intelligence Operations Center SIOC Analyst II works in a 24/7/365 Security Intelligence Operations Center supporting the development of tactical and strategic security and intelligence products to inform protection and risk mitigation efforts in support of CEVA assets, operations, and people. A SIOC Analyst II monitors regional...

  • Operational Technology Security Analyst

    1 week ago

    Houston, Texas, United States INSPYR Solutions Full time

    Position: Operational Technology Security AnalystLocation: Hybrid role (3 days onsite)Contract Duration: Long-Term EngagementEligibility: Must be a US Citizen, Green Card Holder, or Authorized to Work in the US.Key Responsibilities: The Operational Technology Security Analyst will oversee the surveillance of all hardware and assets deployed in the field. ...