Cyber Sr Information Security Analyst

Afognak Native Corporation is looking for a Cyber Sr Info Security Analyst to join our IT Security team.  This position requires a self-motivated individual with a technical and security related professional background in both on-premises and cloud environments.  The Sr Information Security Analyst will evaluate anomalous system events and user actions, investigate to identify indicators of compromise, make threat and risk determinations, and make recommendations regarding mitigation or remediation actions.  This is a full time position that may be performed remotely with limited travel requirements.

This position offers remote opportunity within the U.S.

• Analyze and respond to security events and conduct event log analysis.
• Conduct regular vulnerability scans, analyze the results, and suggest remediation.
• Translate complex technical information to clear, audience specific language.
• Improve IT Security effectiveness by creating or modifying workflows, processes and procedures.
• Conduct security trend analysis through internal and external data sources, and security threat intelligence.
• Collaborate and work closely with other members of the IT and IT Security team, internal and external customers, and 3rd party service providers when responding to cybersecurity incidents and other threats.
• Assist in the performance of cyber risk assessments and the generation of related reports.
• Assist in maintaining or developing documentation regarding security technologies, configuration, and operating procedures.
• Support user requests for cybersecurity related assistance.
• Promote cybersecurity to system users and provide cybersecurity training when necessary.

Payrate: $100,000 to $120,000 Annually

• Must be a U.S. Citizen
• A minimum of 6+ years of direct cybersecurity related experience.
• BS/BA in Information Technology, Cybersecurity, Computer Science or related discipline.
• Professional security certifications – e.g. Security+, CISSP, CASP.
• Clear understanding of anti-virus systems, network security, DLP, Office 365 and Azure Cloud.
• Working knowledge across a variety of cybersecurity systems and tools is desired: SEIM, Vulnerability Scanners, CASB, MDM, MFA, EDR/XDR, Compliance checkers and other security related systems and products.
• Auditing or Information Security Compliance experience including experience with access management, change management, IT Operations, and vulnerability management.
• Experience with compliance or regulatory frameworks – e.g. NIST (CMMC, RMF, CSF), PCI-DSS, HiTrust, ISO 27k.