IT Security Analyst

About ACA

ACA Group is the leading governance, risk, and compliance (GRC) advisor in financial services. We empower our clients to reimagine GRC and protect and grow their business. Our innovative approach integrates consulting, managed services, and our ComplianceAlpha technology platform with the specialized expertise of former regulators and practitioners and our deep understanding of the global regulatory landscape.

Position Summary

The IT Security Analyst in Pune, India, is integral to ACA Group's daily security operations. This role focuses on the meticulous review of logging and monitoring systems, triaging security events from automated alerts and dashboards. The analyst will resolve standard issues using defined playbooks and escalate critical incidents. A key responsibility is understanding and contributing to ACA's IT vision, applying innovative departmental ideas to daily tasks, and proactively enhancing IT Security system effectiveness, particularly in monitoring and alerting. The position requires a self-starter capable of working independently, improving personal effectiveness, and suggesting broader improvements, while ensuring timely and high-quality task execution with support from the team.

Job Duties

• Review security alerts in real time to triage and address or escalate.
• Review and analyze security logs, reports, and dashboards to identify trends, vulnerabilities, and areas for improvement.
• Analyze security events and incidents to identify potential threats or suspicious activities.
• Investigate security incidents and anomalies, including conducting root cause analysis and recommending remediation actions.
• Investigate staff-reported potential security incidents, including malicious machine activity and malicious emails or other impersonation events.
• Participate in vulnerability scanning and assessment activities, including identifying and prioritizing vulnerabilities for remediation.
• Assist in vulnerability remediation efforts, including research into remediation solutions.
• Participate in Due Diligence Requests and other audit activities to collect and produce evidence.
• Participate in Incident Response tabletop exercises.
• Assist with the containment and/or mitigation of any discovered security incidents.
• Assist with identifying gaps, vulnerabilities, exploits, and patches in IT controls in order to generate issue lists and mitigation recommendations.
• Assist with the maintenance of IT Security Systems.
• Assist with research of the latest security technologies.
• Assist with conducting technical reviews of ACA's IT systems and audit security controls.
• Assist with the research, review, development, and/or enhancement of IT security systems.
• Handle security-related escalations from 1st/2nd line support staff.
• Perform ad-hoc work/special projects as necessary to support ACA on various client and internal initiatives.

Preferred Education And Experience

• Bachelor's Degree in a related field.
• 2-4 years of practical experience in a related information security role (e.g., SOC Analyst).
• Relevant cybersecurity professional certification (e.g., Sec+, CySA+, GSEC, SSCP).

Required Skills And Attributes

• Demonstrated professional integrity.
• Dependability, flexibility, and adaptability to new ACA initiatives and changing client needs.
• Ability to work effectively in a fast-paced, small-team environment.
• Capacity to work independently, multitask, and prioritize effectively.
• Skill in establishing and maintaining effective working relationships with colleagues and clients.
• High motivation and goal orientation; proactive in personal education and career progression; initiative in internal and external projects and tasks.
• Commitment to upholding ACA's high-quality standards and customer service focus.
• Strong organizational and problem-solving skills with keen attention to detail.
• Excellent oral and written communication skills.

What working at ACA offers:

ACA provides a competitive compensation package, rewarding performance and recognizing contributions. Our Total Rewards include fully ACA-funded medical coverage for employees and their families, access to Maternity & Fertility and Wellness programs, Personal Accident Insurance, Group Term Life Insurance, Employee Discount programs, and Employee Resource Groups. Generous time off is provided for designated ACA Paid Holidays, Privilege Leave, Casual/Sick Leave, and other leaves to support physical, financial, and emotional well-being.

What we commit to:

ACA is dedicated to a policy of non-discrimination in all aspects of employment, including recruitment, hiring, placement, promotions, training, discipline, terminations, layoffs, transfers, leaves of absence, compensation, and all other terms and conditions of employment. We ensure that all qualified applicants receive equal consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or protected veteran status, or any other legally protected status.