Information Security Analyst - Incident Response & Threat Analysis
Respond to Information Security incidents in a 24x7 operations department, recommending risk mitigation and implementing security safeguards. Analyze network and host-based security logs, monitor IDS/IPS alerts, and conduct threat research. Provide technical support, perform forensic activities, and assist junior analysts in security operations.
Key Highlights
Key Responsibilities
Technical Skills Required
Benefits & Perks
Job Description
Cyber Focus AII's mission is to help cybersecurity professionals discover cutting-edge opportunities in their field. We are not a staffing firm or agency. Cyber Focus AI does not hire for these roles—we use advanced technology to locate and verify them from actual employers.
Description And Requirements
At the University of Phoenix, we are committed to the future of work by providing a fully remote, work-from-home environment. This strategy enables us to attract top talent nationwide. Are you looking for a rewarding and fulfilling position that offers challenging work and the opportunity to make a significant impact while collaborating with a team of fun, innovative individuals? Would you prefer to work with an organization that positively contributes to the world? If so, we would love to hear from you!
Are you searching for a rewarding, fulfilling position that offers challenging work and the ability to make a big impact while working side-by-side with a team of fun, innovative people? Ideally, would you like this position to be with an organization that makes a positive contribution to the world? If so...we would love to hear from you!
About Us
University of Phoenix is a leading higher education institution founded in 1976 by Dr. John Sperling. Our mission is to improve the lives of our students, their families and future generations through higher education. Our values (which hopefully you share) are: Brave. Honest. Focused.
Our University values and embraces all team members and their unique perspectives. We fundamentally believe in fostering an environment which deeply respects, celebrates, and actively encourages a diverse workforce. We are committed to hiring - and learning from - those who share our passion to help others achieve their educational aspirations.
We offer excellent benefits, an effective recognition program, and outstanding learning and development tools, including tuition vouchers for employees and their qualified family members.
About The Position
Responds to Information Security incidents working in a 24x7 operations department. Recommends risk mitigation, implements appropriate security safeguards, tests proposed security solutions, and performs audit/compliance and forensic activities as needed. Provides support for operational security tools and technologies by responding to alerts and troubleshooting issues. Assists with a variety of duties including analysis, system administration, technology testing, incident response and training junior security operations analysts. Serves as the primary interface to the Information Technology Operations Center personnel when responding to incidents.
What You'll Do
Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.
- Reviews, validates, classifies, and responds to security events.
- Analyzes a variety of network and host-based security logs (Firewalls, NIDS, HIDS, Syslog, etc.).
- Monitors and analyzes network traffic and IDS/IPS alerts, investigating intrusion attempts and performing in-depth analysis of exploits and attacks.
- Conducts proactive threat and vulnerability research.
- Participates in incident reporting for high priority events, from initial response to triage, to determining remediation actions and escalation paths.
- Performs security Incident Event Management (SIEM) console monitoring and correlation.
- Evaluates new security technology for the organization through quantitative and qualitative measures.
- Provides skilled technical assistance in Information Security strategy and planning.
- Performs firewall rule changes based on submitted requests.
- Presents security research analysis and recommendations to the Information Security management team.
- Resolves Hotline issues (issue resolution, security incident reporting) and Abuse issues (email, phishing attacks, social engineering calls).
- Continuously monitors regulatory compliance through implemented Information Security technologies.
- Administers, monitors and troubleshoots antivirus activities, and email gateway issues. Configures and tests new IDS/IPS rules based on in-depth security analysis.
- Performs network and host DLP monitoring and logging.
- Performs application whitelisting and file integrity monitoring.
- Conducts threat and vulnerability research, intelligence and monitoring.
- Maintains and increases professional and technical knowledge by attending workshops, reviewing professional publications, establishing personal networks and participating in professional societies.
- May provide direction and support to less experienced security engineering staff to orient them and increase their understanding of more complex security analysis and design.
- May lead moderately complex security projects as assigned.
- Performs other duties as assigned or apparent.
Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.
#CyberFocusAI
Similar Jobs
Explore other opportunities that match your interests