CrawlJobs Logo

Analyst, Information Security

United States, Naperville 78210.00 - 114708.00 USD / Year · Job Posted February 18, 2026
Apply Position
Job Link Share

Job Description

The Information Security Analyst safeguards the organization by monitoring and triaging security alerts across endpoint, identity, email, network, cloud, vulnerability, and SIEM platforms; investigating and coordinating response to security incidents; conducting threat hunting and detection tuning to improve coverage and reduce noise; and managing vulnerability remediation and security risk tracking. This role also supports governance, audits, and third-party risk assessments through documentation and evidence collection, delivers cybersecurity awareness initiatives and phishing simulations to reduce human risk, and partners with IT and business stakeholders to drive measurable, continuous improvements to security operations and control effectiveness.

Job Responsibility

  • Proactively monitor and triage security alerts across endpoint, identity, network, cloud, email, vulnerability, and SIEM platforms
  • Detect, investigate, and respond to security incidents
  • coordinate containment, remediation, root cause analysis, and post-incident reviews
  • Develop, tune, and maintain security detections, alerts, and response playbooks to improve threat visibility and response effectiveness
  • Conduct proactive threat hunting using endpoint, identity, network, and cloud telemetry
  • Manage and support vulnerability and exposure management activities, including risk-based prioritization, remediation tracking, and reporting
  • Maintain and support cybersecurity risk management activities, including risk registers, assessments, and mitigation planning
  • Support governance, risk, and compliance efforts by assisting with audits, control documentation, evidence collection, and third-party risk assessments
  • Administer and optimize security tools and platforms to ensure effectiveness, coverage, and operational reliability
  • Develop and deliver cybersecurity awareness training, including phishing simulations and targeted education initiatives
  • Produce and analyze security metrics and operational reports to drive continuous improvement
  • Collaborate effectively with IT, Engineering, and business teams to ensure consistent, efficient security operations
  • Communicate clearly and professionally with stakeholders during incidents and ongoing security initiatives

Requirements

  • Bachelor’s degree in Cybersecurity, Computer Science, Information Systems or equivalent experience
  • 3+ years in cybersecurity roles, Security Operations, Incident Response, threat detection, or related information security roles
  • Demonstrated experience triaging and investigating security alerts in one or more of: EDR/XDR, email security, identity systems (AD/Entra ID), network security tools, cloud security monitoring (AWS/Azure), and/or SIEM platforms
  • Strong understanding of attacker tactics and common enterprise threat scenarios (phishing, credential compromise, malware/ransomware, lateral movement, privilege escalation)
  • Ability to analyze logs and telemetry
  • experience writing or modifying queries/rules (e.g., KQL/SPL/SQL-like queries) is strongly preferred
  • Experience executing incident response activities: investigation, containment coordination, eradication support, recovery validation, and post-incident documentation
  • Strong understanding of vulnerability and exposure workflows, including validation and remediation verification
  • Ability to create and maintain runbooks/playbooks and operational documentation
  • Familiarity with security frameworks (e.g., CIS, NIST CSF, ISO 27001) and regulatory standards (e.g., PCI, GDPR, HIPAA)
  • Excellent communication and reporting skills for both technical and non-technical audiences
  • Analytical mindset with strong problem-solving capabilities
  • Ability to work independently, prioritize tasks, and collaborate with cross-functional teams

What we offer

  • Health/Rx
  • Dental
  • Vision
  • Flexible and health spending accounts (FSA/HSA)
  • Supplemental life insurance
  • 401(k)
  • Paid time off
  • Paid sick time
  • Short term & long term disability coverage (STD/LTD)
  • Employee stock ownership (ESOP)
  • Holiday pay for company designated holidays

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Analyst, Information Security

8 matching positions

Senior Information Security Cyber Security Data Analyst

Senior Information Security Cyber Security Data Analyst – Assistant Vice Preside...
Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-12 years of relevant experience in Cyber Security, Information security, primarily into building data pipelines, Data collection and management, Data transformation etc.
  • Building Data Pipelines: Creating systems for collecting, storing, and transforming data from various sources. Impala, Hive
  • Data Collection and Management: Data engineers are responsible for gathering data from various sources, ensuring its quality, and making it accessible for analysis.
  • Data Transformation: They convert raw data into usable formats, often using ETL (Extract, Transform, Load) processes, to big data platform of Hadoop, Cloud technologies like DataBricks and Snowflake to make it suitable for analysis and reporting.
  • Applicable Certifications or willingness to earn within 12 months of joining
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Identify potential information security (IS) risks and make recommendations for enhancement
  • Collect and analyze security risk evidence and coordinate with internal and external compliance and auditing agencies / officials
  • Execute meetings and communicate complex security topics and safe IS practices with all levels of the organization
  • Ensure that controls are utilized daily and that non-compliance remediation is addressed
  • Provide IS consulting services, including interpreting and/or clarifying information security policy, procedures, standards or concepts
  • Assist with defining and implementing IS standards to align procedures and practices in compliance with Citi standards
  • Educate and advise on safe information security practices and current, changing, and/or recommended information security requirements
  • Validate compliance with IS policies, practices, and procedures, and resolve a variety of IS related issues in coordination with the business
  • Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
  • Has the ability to operate with a limited level of direct supervision.
  • Fulltime
Read More
Arrow Right

Information Assurance Specialist I (Information Security Analyst)

Barbaricum is seeking an Information Assurance Specialist I (Information Securit...
Location
Location
United States , Indianapolis
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance
  • Bachelor's degree in related field
  • Meet DoDM 8140.03 IAT III/IAM II requirements
  • Minimum 2yr experience in network operations and information security
  • Demonstrated experience assessing security controls based on cybersecurity principles and tenets (e.g., NIST SP 800-53, Cybersecurity Framework, etc.)
  • In-depth understanding of relevance of NIST Security Controls and Control Implementation methodologies to the SA&A process
  • Demonstrated experience with continuous monitoring/ongoing authorization
Job Responsibility
Job Responsibility
  • Support cybersecurity compliance, risk management, and information assurance activities for Department of Defense (DoD) systems and networks
  • Assist in assessing and validating security controls in accordance with NIST SP 800-53, the NIST Cybersecurity Framework, and applicable DoD requirements
  • Support the Security Assessment and Authorization (SA&A) process by reviewing control implementations, identifying risks, and documenting findings
  • Participate in continuous monitoring and ongoing authorization activities to help maintain system security posture and compliance
  • Assist with vulnerability assessments, security reviews, and remediation tracking efforts across enterprise environments
  • Collaborate with system administrators, engineers, and cybersecurity personnel to implement and maintain required security controls
  • Develop and maintain cybersecurity documentation, including assessment reports, compliance artifacts, and authorization support materials
  • Monitor security-related activities and provide recommendations for risk mitigation and control improvements
  • Support compliance with the Risk Management Framework (RMF), organizational policies, and applicable federal and DoD cybersecurity standards
  • Stay informed on cybersecurity threats, vulnerabilities, and best practices to support effective information assurance operations
  • Fulltime
Read More
Arrow Right

Information Assurance Specialist – III (Information Security Analyst)

Barbaricum is seeking an experienced Information Assurance Specialist III (Infor...
Location
Location
United States , Indianapolis
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance
  • Bachelor's degree in related field
  • Must meet DoDM 8140.03 IAT III/IAM II requirements
  • Minimum 10yr experience in network operations and information security
  • Demonstrated experience assessing security controls based on cybersecurity principles and tenets.(e.g., NIST SP 800-53, Cybersecurity Framework, etc.)
  • In-depth understanding of relevance of NIST Security Controls and Control Implementation methodologies to the SA&SA process
  • Relevant DOD, DHS or .gov Cyber Security Information Assurance focused experience with specific current hands-on researching, writing, and submitting complete A&A documentation packages for new system authorizations
Job Responsibility
Job Responsibility
  • Assess, implement, and validate cybersecurity controls in accordance with NIST SP 800-53, the NIST Cybersecurity Framework, and applicable DoD cybersecurity requirements
  • Support the Security Assessment and Authorization (SA&A) process by evaluating security controls, identifying risks, and recommending mitigation strategies
  • Develop, review, and maintain Assessment and Authorization (A&A) documentation packages to support system accreditation and authorization efforts
  • Conduct security assessments, vulnerability analyses, and compliance reviews to ensure systems meet federal and DoD cybersecurity standards
  • Collaborate with system owners, engineers, and cybersecurity teams to implement security controls and maintain a strong security posture across enterprise environments
  • Support continuous monitoring activities, including risk assessments, control validation, remediation tracking, and reporting
  • Provide cybersecurity guidance and recommendations related to information assurance, risk management, and regulatory compliance
  • Prepare technical reports, security documentation, and executive briefings to support authorization decisions and stakeholder requirements
  • Ensure compliance with Risk Management Framework (RMF), DoD policies, and applicable government cybersecurity regulations
  • Serve as a subject matter expert on information assurance, cybersecurity controls, accreditation processes, and security compliance initiatives
  • Fulltime
Read More
Arrow Right
New

Information Security Analyst

Dotdigital is seeking an experienced and motivated Security Analyst to join our ...
Location
Location
United Kingdom; South Africa
Salary
Salary:
Not provided
dotdigital.com Logo
Dotdigital
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in a Security Analyst, Information Security, Cyber Security, Systems Administration, Infrastructure, Cloud Operations, or DevOps role with demonstrable security responsibilities
  • Experience working within a security or compliance framework such as ISO 27001
  • Understanding of security operations and incident response processes
  • Experience with vulnerability management, remediation tracking, and security risk reduction
  • Knowledge of identity and access management principles
  • Understanding of cloud security concepts and security controls within major cloud providers
  • Hands-on experience of an array of core security technologies
  • Understanding of common application security risks and OWASP principles
  • Strong communication skills with the ability to engage technical and non-technical stakeholders
  • Ability to manage multiple priorities and work independently in a fast-paced environment
Job Responsibility
Job Responsibility
  • Monitor and investigate security alerts and events across security tooling, cloud environments, business systems, and applications
  • Support incident response activities including detection, analysis, containment, eradication, recovery, and lessons learned
  • Develop and improve security monitoring, alerting, playbooks, and operational procedures
  • Assist with threat hunting and proactive identification of security risks and suspicious activity
  • Maintain awareness of emerging cyber threats, vulnerabilities, and attack techniques relevant to SaaS businesses
  • Own day-to-day vulnerability management activities across infrastructure, cloud platforms, applications, and endpoints
  • Work with technology teams to prioritise and coordinate remediation activities
  • Track vulnerabilities through to resolution and provide reporting on remediation performance
  • Support penetration testing activities and coordinate remediation of findings
  • Support the security of cloud environments and SaaS platforms through implementation and monitoring of security controls
What we offer
What we offer
  • Commission & bonus opportunities
  • Annual leave that increases with service + option to buy more
  • Additional paid wellbeing days + annual wellbeing reward
  • Christmas office shutdown (extra time off)
  • Enhanced parental leave & family support policies
  • Employee recognition & reward schemes
  • Referral bonuses & long-service rewards
  • Fulltime
Read More
Arrow Right

Information Security Analyst

We are working with a growing technology company in Irvine that is looking to ad...
Location
Location
United States , Irvine
Salary
Salary:
80000.00 - 120000.00 USD / Year
strategicemployment.com Logo
Strategic Employment Partners
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3–5 years of experience in cybersecurity, GRC, or IT security roles, with exposure to SOC2 or similar compliance frameworks
  • Experience with security operations tools (e.g., vulnerability scanning, endpoint protection, monitoring) and incident response processes
  • Ability to manage security policies, audits, vendor risk assessments, and internal controls in a dynamic environment
  • Comfortable working cross-functionally and communicating security concepts to both technical teams and external stakeholders
  • Strong ownership mindset with the ability to manage multiple priorities across compliance, operations, and ad hoc security needs
Job Responsibility
Job Responsibility
  • Take ownership of security initiatives across the organization, including GRC, security operations, and stakeholder support
  • Work independently while interfacing with internal teams, auditors, and occasionally clients
  • Manage security policies, audits, vendor risk assessments, and internal controls
  • Manage multiple priorities across compliance, operations, and ad hoc security needs
  • Fulltime
Read More
Arrow Right

Information Security Analyst

Responsible for supporting Lulu Retail's information security governance, risk, ...
Location
Location
India , Kochi-Kerala
Salary
Salary:
Not provided
mantlesolutions.in Logo
Mantle Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, or a related field
  • 2 years of experience in information security governance, risk, and compliance
  • Experience supporting ISO 27001, PCI-DSS, NIST, IT audits, or regulatory compliance programs is preferred
  • Good understanding of information security principles, risk management methodologies, and security frameworks
  • Professional certifications such as ISO 27001 LA, CISA, Security+ are desirable
  • Strong communication skills with the ability to explain technical concepts to non-technical stakeholders
  • Strong organizational and time management skills
  • Ability to work independently and collaboratively within a team
Job Responsibility
Job Responsibility
  • Assist in the development, maintenance, review, and communication of information security policies, standards, procedures, and guidelines
  • Conduct information security risk assessments for systems, applications, cloud services, projects, and business processes, and track remediation of identified risks
  • Monitor and maintain compliance with applicable regulatory, legal, and industry requirements, including ISO 27001, NIST, PCI-DSS, GDPR, PDPL, and internal security policies
  • Coordinate and support internal and external audits, security assessments, and regulatory reviews, including evidence collection, stakeholder coordination, documentation, and remediation tracking
  • Monitor security governance, risk, and compliance activities and prepare periodic reports, dashboards, metrics, and management presentations on security posture and compliance status
  • Support information security awareness and training initiatives, including awareness campaigns, phishing simulations, and monitoring employee participation and effectiveness
  • Collaborate with IT, application, cloud, and security teams to ensure security controls are implemented, maintained, and aligned with organizational policies, regulatory obligations, and project requirements
  • Support third-party and vendor security risk assessments, including due diligence reviews, security evaluations, and follow-up on remediation actions
  • Fulltime
Read More
Arrow Right

Information Security Analyst

Our client, a large government systems integrator located in Camp Smith, HI, is ...
Location
Location
United States , Camp Smith
Salary
Salary:
45.00 - 59.00 USD / Hour
clearbridgetech.com Logo
ClearBridge Technology Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of relevant professional experience
  • BA/BS degree, or the equivalent combination of education, technical training, or work/military experience
  • Must possess and maintain an active Top Secret/SCI (TS/SCI) security clearance
  • Must hold an IAM Level II Certification (e.g., CISSP, CASP, CISM, GSLC, or CCIS)
  • Additional specific certifications may be required depending on the final job assignment
  • Deep understanding of the DoD Risk Management Framework (RMF), specifically NIST SP 800-53 Rev 4 and Rev 5
  • Enterprise Mission Assurance Support Service experience (eMASS)
  • Strong comprehension of DoD policies and procedures, including FIPS 199, FIPS 200, and NIST 800-53
  • DISA STIGS
  • Proven familiarity with foundational network concepts, user authentication protocols, and digital signatures
Job Responsibility
Job Responsibility
  • Perform cybersecurity activities for a large program, coordinating with government program staff and other government agencies to assist in the creation, dissemination, direction and editing or program policy, standards, and operating procedures
  • Utilize available resources to conduct system and network vulnerabilities using Security Technical Implementation Guides (STIGS), ACAS vulnerability canner and DISA SCAP to mitigate those finding for Linux, Windows, and associated network operating systems
  • Carry out DoD Risk Management Framework (RMF) in accordance with DoD 8510 to ascertain information systems’ security posture by utilizing security control validation activities and coordinating security testing
  • Evaluate firewall change requests and assessing organizational risk
What we offer
What we offer
  • Excellent benefits and compensation packages
  • Fulltime
Read More
Arrow Right

Information Security Analyst

Carex is partnering with a Healthcare industry partner to hire an Information Se...
Location
Location
United States , Edina
Salary
Salary:
53.00 - 67.00 USD / Hour
carexconsulting.com Logo
Carex Consulting Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Associate’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent Information Security work experience required
  • 2–4 years of IT experience with responsibilities in Information Security
  • Experience supporting security awareness training programs and educating end users
  • Working knowledge of security monitoring tools, threat detection, and incident response processes
  • Strong understanding of information security principles, controls, and best practices
  • Excellent written and verbal communication skills with the ability to train and influence users across all organizational levels
  • Strong analytical, problem-solving, and organizational skills
Job Responsibility
Job Responsibility
  • Analyze, implement, and maintain security controls that align with information security policies and industry best practices
  • Manage and administer security awareness training tools and resources to educate users and strengthen the organization’s security culture
  • Develop and deliver engaging security awareness initiatives for employees at all levels of the organization
  • Monitor security tools and alerts to identify potential threats and suspicious activity
  • Support Security Operations Center (SOC) functions by assisting with security incident detection, investigation, and response
  • Help maintain compliance with organizational security standards and procedures
  • Collaborate with IT teams and business stakeholders to promote secure technology practices
  • Communicate security concepts, risks, and best practices effectively to both technical and non-technical audiences
  • Stay current on emerging cybersecurity threats, trends, and security technologies
  • Fulltime
Read More
Arrow Right