Information Security Analyst

Information Security Analyst at Atlas Technica

Lensa, in partnership with DirectEmployers, promotes this Information Security Analyst role for Atlas Technica, a rapidly growing IT management, user support, and cybersecurity firm specializing in hedge funds and investment firms. This remote position is open to UA candidates only and offers excellent career development opportunities for a skilled professional.

Atlas Technica's mission is to shoulder IT management, user support, and cybersecurity for our clients, who are hedge funds and other investment firms. Founded in 2016, we have grown year over year through our uncompromising focus on service. We value ownership, execution, growth, intelligence, and camaraderie, and we are looking for people who share our Core Values, thrive, and contribute to this environment while putting the customer first. At Atlas Technica, we offer a competitive salary, comprehensive benefits, and great perks to our global Team, striving to maintain a professional yet friendly environment while promoting professional and career development for our Team Members. Join Atlas Technica now!

We seek a skilled Information Security Analyst to join our rapidly growing organization. This is a highly technical role providing excellent career development opportunities for the successful candidate. You will work closely with the Chief Information Security Officer (CISO) and various teams to maintain and improve the security posture of Atlas and its clients. As a new position, this role will evolve, providing opportunities for growth and adaptation.

Responsibilities

• Vulnerability Management: Review vulnerability reports, research scalable solutions for remediation, and collaborate with Support/NOC to ensure minimal client impact. Work with CS/Engineering to script and automate remediations, track progress in ticketing systems, and address vulnerabilities for third-party management.
• Risk Management And Due Diligence: Provide accurate and timely responses to Due Diligence Questionnaires (DDQs), review findings from risk assessments and penetration tests, and recommend remediation strategies. Participate in Business Impact Analyses and tabletop exercises.
• Industry Benchmark Alignment And Standards Updating: Measure alignment with Microsoft benchmarks in Intune, increase scores, address issues in workstation builds, cloud infrastructure, and security configurations, and harden systems.
• SOC 2 Maintenance And Additional Security Tasks: Perform test restores, conduct reviews of KnowBe4 phishing tests, review SIEM logs, assist in addressing cybersecurity incidents, work with NOC and outsourced SOC on remediation runbooks, and perform additional security tasks as assigned.

Requirements

• Strong understanding of cybersecurity principles and practices.
• Experience with vulnerability management and remediation.
• Familiarity with Microsoft Intune and security benchmarks.
• Excellent analytical and problem-solving skills.
• Ability to work collaboratively with cross-functional teams.
• Strong communication skills, both written and verbal.
• Strong ability to work independently.
• Experience with security tools (SIEM, IDS/IPS, vulnerability scanners).
• Experience with RMM/SOAR and other automation platforms.
• Experience scripting.
• Experience writing runbooks.

Desirable Qualities

• Experience working in an MSP environment (preferred, but not required).
• Relevant certifications (AZ-500, SC-900, SC-300, CompTIA Security+, etc.).

Key skills/competency

• Cybersecurity Principles
• Vulnerability Management
• Risk Assessment
• Microsoft Intune
• SIEM
• IDS/IPS
• Scripting
• Automation
• Incident Response
• SOC 2 Compliance