Information Security Analyst

An Information Security Analyst is the digital "guardian" of a company's data. Their primary mission is to protect the organization's computer networks and systems from cyberattacks, data breaches, and unauthorized access. 

Core Roles & Responsibilities

• Security Monitoring: Using SIEM (Security Information and Event Management) tools like Splunk or IBM QRadar to monitor network traffic for suspicious activity.
• Vulnerability Assessment: Conducting regular scans and Penetration Testing to find "holes" in the company's defenses before hackers do.
• Incident Response: Leading the "fire drill" when a breach occurs—containing the threat, investigating the root cause, and restoring secure operations.
• Firewall & Encryption Management: Setting up and maintaining Firewalls and data encryption programs to protect sensitive "data at rest" and "data in transit."
• Security Auditing: Performing internal audits to ensure the company meets regulatory standards like SOC2, ISO 27001, or HIPAA.
• Risk Assessment: Evaluating the security of third-party vendors and new software before they are integrated into the company ecosystem.
• Employee Awareness Training: Educating staff on how to spot Phishing emails and follow "clean desk" policies to prevent human-error breaches.
• Policy Development: Drafting and enforcing the "rules of the road," such as Password Policies and Access Control (who gets to see what data). 

Essential Technical Stack

• Endpoint Protection: Mastery of tools like CrowdStrike or SentinelOne.
• Cloud Security: Securing environments in AWS, Azure, or Google Cloud.
• Networking: Deep knowledge of TCP/IP, DNS, and VPN protocols.