Information Security Analyst
Full Job Description
About the Role
We are seeking a skilled Information Security Analyst to join our team in Pune. In this crucial role, you will be instrumental in safeguarding our organization's digital assets by actively monitoring security alerts and incidents, responding swiftly to potential threats, and conducting comprehensive threat hunting, vulnerability assessments, and penetration testing to identify and address security weaknesses.
You will also perform regular security audits and risk assessments, meticulously analyze security breaches to determine root causes, and implement effective corrective actions. Your responsibilities will include assisting and/or leading efforts to isolate, contain, respond to, and recover from security incidents. A key part of your role will be to identify, review, prioritize, plan, coordinate, and follow up on the remediation of vulnerabilities.
You will manage security alerts generated by the Group-Wide CSIRT team and various security tools and technologies, including endpoint security, network security, IDR, DLP, and SIEM. Configuration and maintenance of security technologies such as SIEM, endpoint security, and intrusion detection/prevention systems will be expected, potentially involving scripting, automation, and orchestration across different platforms.
Furthermore, you will develop and implement robust security policies, procedures, and protocols. This includes reviewing systems and configurations, reporting on compliance with ION standards, client requirements, audit controls, regulations, and industry best practices. You will also respond to information security-related inquiries and requests.
Collaboration is key; you will work closely with Engineering teams and other functions to ensure security measures are integrated into all aspects of product delivery and organizational operations. Providing training and best practice security recommendations to Engineering and other teams within ION is also part of this role. Staying abreast of the latest security trends, technologies, and threats is essential, as is preparing and presenting reports on security incidents and mitigation efforts to management.
What We're Looking For
Required Skills, Experience, and Education:
- A Bachelor's degree in Computer Science, Information Technology with a specialization in Information Security.
- At least 3 years of proven experience as a Security Analyst or in a similar role.
- Strong knowledge of security protocols, systems, and methodologies.
- Fundamental programming/scripting capabilities (e.g., Python, PowerShell, Bash).
- Experience with security tools such as firewalls, intrusion detection systems, and antivirus software.
- Familiarity with regulatory requirements and industry standards (e.g., GDPR, ISO 27001).
- Excellent analytical and problem-solving skills.
- Strong communication and interpersonal skills.
- Relevant certifications (e.g., CISSP, CISM, CEH) are considered a significant plus.
About the Role and Industry
Role: Security Engineer / Analyst
Industry Type: Software Product
Department: IT & Information Security
Employment Type: Full Time, Permanent
Role Category: IT Security
Education:
- UG: Any Graduate
- PG: Any Postgraduate
Company