Security Analyst

Skills

Description

Prior experience in handling a vulnerability and user access management program is a must.

Must have experience in user onboarding and exit management in SailPoint, patching tools like WSUS and Avanti Shavlik, CrowdStrike EDR.

Knowledge of vulnerability scanning tools like Tanium, Security Scorecard, Wiz.io

Collaborative and able to work effectively with various teams and stakeholders.

Detail: A meticulous approach to documentation, compliance, and auditing.

Analytical Communication stakeholders.

Responsibilities

• Internal and External User Access Auditing: Perform access audits to verify compliance with security policies, identify unauthorized access, and ensure internal and external access controls are effective.
• Middleware Support: Provide expert support for middleware technologies, ensuring secure configurations and addressing middleware-related security concerns.
• Patch Management: Develop and manage a comprehensive patch management program, ensuring timely application of patches.
• Certificate Management: Manage and renew digital certificates used for secure communications and maintain proper configurations.
• Asset Discovery and Management: Identify, categorize, and manage all IT assets, including hardware and software, to maintain an accurate inventory.
• End-of-Life Management: Identify and manage end-of-life assets, including hardware and software, and develop strategies for replacement or upgrade.
• Monitoring Cyber Tool Stack Deployment: Oversee the deployment and monitoring of the cybersecurity tool stack, including EDR tools, ensuring their effectiveness and alignment with security goals.
• User Onboarding and Exit Management: Establish and maintain user onboarding and exit procedures to ensure secure and compliant access provisioning and deprovisioning.
• CIS Benchmarking: Implement CIS benchmarks for security configurations and conduct regular assessments to ensure and maintain compliance.