Security Analyst Job Description
Security analyst
provides support for maintenance and upkeep of security preventative and detective tools such as Trend Micro Endpoint Security, Deep Security, Splunk, and Nessus.
Security Analyst Duties & Responsibilities
To write an effective security analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included security analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Should be able to interpret, operate, configure and troubleshoot firewalls, load balancers, remote access, and application proxies at a basic level
Test and deploy security technology products
Make recommendations for existing systems
Implementing evaluation computing environment for IT Security
Developing engineering diagrams and documentation
Review and respond to security events that are detrimental to the overall security posture
Works with the Security Architects to tune and maintain the SIEM (Security Information and Event Management) as needed
This position requires applied knowledge of established procedures, policies and best practices
Candidate should have understanding of 7 layers of OSI model and should be able to troubleshoot simple incidents involving first four layers
Receive, log, monitor and update incident and problem tickets from customers, both internal and external
Security Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Analyst
List any licenses or certifications required by the position: ITIL, CISSP, SANS, CISM, CCNP, CCNA, CCDP, CCDA, X.509, ISO
Education for Security Analyst
Typically a job would require a certain level of education.
Employers hiring for the security analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Collage Degree in Computer Science, Education, Information Technology, Information Security, Technical, Information Systems, Engineering, Business, Management, Military
Skills for Security Analyst
Desired skills for security analyst include:
NIST
Techniques
Firewalls
Vulnerability scanning
ACAS
SCAP
SPLUNK
NESSUS
PCI
NISPOM
Desired experience for security analyst includes:
Knowledge of how email, DNS, TCP/IP networks work is required
Some shell programming experience is preferred
Security certifications (CISSP, SANS, and/or others) and professional security memberships are preferred
CCNA R&S and Security or equivalent, CCNP level preferred
Well-known networking protocols and services (FTP, HTTP, SSH, SMB, LDAP)
Certified Information Systems Security Professional (CISSP) or Certified Secure Software Lifecycle Professional (CSSLP)
Security Analyst Examples
1
Security Analyst Job Description
Job Description Example
Our company is looking to fill the role of security analyst. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for security analyst
- Should have basic Problem Management familiarity to assist in this process
- Should be familiar with the Root Cause Analysis (RCA) process to assist with documenting RCA's
- Should have basic Capacity Management understanding to assist with this process
- Provide guidance & recommendations on risk & security posture at the client’s sites
- Provide functional expertise for customer projects that contain in-scope security requirements
- Consult with SOC support personnel on most pertinent security incidents, and provide customers with remediation recommendations
- Work with the clients, Security Services Advisor (SSA) & SOC to define action plans that are easy to implement, effective at reducing risk and will take advantage of existing people, processes, and technologies
- Strong foundation on Networks(OSI Model) & have experience with Routing & Switching
- Strong security mindset and is comfortable with working in UNIX-based environments like Linux
- Infrastructure Management (• Device Health and Incident Management • Simple change control for managed devices)
Qualifications for security analyst
- Experience with security products, vulnerability analysis and log analysis (SEIM)
- 2+ years’ experience with security technologies is required
- System Administration experience in at least one operating system - Windows or UNIX is required
- Displays basic knowledge of security processes, requirements and industry standards in relation to Cryptographic keys management, PKI management, S.W.I.F.T
- Know thy enemy! Strong desire to stay abreast of emerging threats and the capability to recommend best practices to mitigate and defend against them
- In depth knowledge of network topologies, communications protocols, and service management
2
Security Analyst Job Description
Job Description Example
Our growing company is looking for a security analyst. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for security analyst
- Performs audits of all groups to ensure all access are accurate and appropriate
- Creates routine and ad-hoc reports
- Maintains and updates the security procedures manual, the property loss and prevention program, the safety program and the emergency training curriculum
- Evaluates security incidents, performs investigations and determines appropriate course of action
- Provides special security for events
- Monitor, analyze, and respond to potential security threats identified by Laureate systems
- Enter information into ticketing and similar systems to track threats, assignment, and remediation actions
- Participate in a global security monitoring team (Basel, Switzerland, Singapore and San Francisco, USA) that monitors for and responds to security events on Roche networks, working with external partners when necessary
- Help define the Group’s information security program, policy, and standards
- Assist in the collection of system information and procedures required by internal and external audits and examinations
Qualifications for security analyst
- Excellent working knowledge of MS Office Excel, Word and PowerPoint
- Knowledge of programming / scripting languages is helpful but not required
- Basic knowledge of scripting and automation strategies for data management
- Capabilities and experience in maintaining patch management regimens
- Professional understanding of how software behaves and functions, particularly the interactions with operating systems and the network stack
- Understanding of security procedures
3
Security Analyst Job Description
Job Description Example
Our company is growing rapidly and is looking to fill the role of security analyst. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for security analyst
- Assist with organization-wide vulnerability scanning and remediation activities
- Monitors access controls and logs on a daily basis
- Works with external vendor to ensure monitoring and alerting configurations are properly configured and appropriate for risk profiles
- Runs vulnerability scans on a regular basis
- Maintains documentation relating to access controls within the company’s computing environment
- Identifies and corrects data security concerns in a multiple computing platform environment
- Creates and analyzes reports on security control effectiveness
- On-board applications
- Add/remove users
- Monitor scan schedules
Qualifications for security analyst
- Engage in problem management and issue triage related to security technologies
- At least 3 years experience supporting of SA&As
- Ability to obtain and maintain a Government security clearance of Top Secret
- Active federal security clearance with a TS/SSBI is preferred
- Must have basic understanding and knowledge of firewall functionality
- Must have basic understanding of Caching/Proxy/AV devices
4
Security Analyst Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of security analyst. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for security analyst
- Assist in managing and deploying large-scale security projects and initiatives across the organization
- Assist in evaluating and developing the security controls for IT solutions of all types (mobile, web, client-server, etc) both pre- and post‐implementation
- Assist in performing technical assessments and penetration testing of internally- and commercially-developed applications (web, desktop, and mobile), systems, and medical devices
- Assist in managing short term and long term project assignments for remediation efforts and secure technology deployments
- Participate in information security incident response, forensic investigation efforts, and malware analysis processes and assists in developing corrective actions and preventative measures for security incidents
- Assist in developing technology documentation, website publishing and technical documentation as needed per project
- Assist with the coordination of internal and external stakeholders (including internal and 3rd party application developers) to recommend and help with security vulnerability remediation efforts
- Assist in developing and providing procedural and technical security guidance to facilitate the implementation of IT solutions
- Provide engineering support and oversight of various technologies including but not limited to
- Effectively applies knowledge and skills of analysis, business processes, tools, domains, project methodologies, requirements definitions, and testing to solve a range of problems
Qualifications for security analyst
- Must have basic understanding of Global/Local load balancing devices
- Must have a basic understanding of VPN devices
- Must have a basic understanding of SSL devices
- An understanding of Internet protocols such as UDP, ICMP, DNS, SMTP, POP, HTTP, and SNMP
- ITIL Certification required (or must obtain within first month of hire)
- Internal applications should be familiar with ESP, ETMS, SMARTS, Tier1 - Espresso and Concord
5
Security Analyst Job Description
Job Description Example
Our growing company is looking for a security analyst. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security analyst
- Serve as a primary technical advisor to the SO Director and Deputy Directors for security risks associated with a wide range of threats to LLNL assets, including theft of special nuclear material
- Advise and provide technical guidance associated with security, systems and process analysis to support regulatory compliance for programs/clients
- Conceptualize, review, write, and provide input to various technical and regulatory documents such as vulnerability analyses (VAs), risk assessments (RAs), Site Security Plans (SSPs), Essential Element (EE) Security Plans, Performance Test Plans (PTPs), Performance Assurance Plans (PAPs), and the Threat Mitigation (TM) Program Description
- Perform complex and in-depth technical analyses (e.g., VAs, RAs, Threat Identification, and Threat Assessments) with the use of analytical software (e.g., HOTSPOT, ALOHA, ConWep) to develop data and provide risk and consequences
- Conduct probabilistic risk assessments for designated security assets and deviations from regulatory requirements in accordance with the Graded Security Protection Policy, Interagency Security Committee Design Basis Threat, industry standards, Code of Federal Regulations, and other relevant DOE Orders, and guidance documents
- Review broad program requirements contained in DOE Guides and Standards, industry standards, and Code of Federal Regulations, extract key regulatory requirements and develop analytical approaches to determining security risks for LLNL security assets
- Identify and oversee performance testing activities for essential elements for protection strategies
- Provide on-call support, as needed, for emergency security issues
- Ensure that the infrastructure is managed effectively, through regular publication of management, monitoring & measurement statistics
- To teach, train & mentor other team & global extended team members in order to share-knowledge & experiences
Qualifications for security analyst
- Checkpoint CCSA/CCSE
- Juniper Certification (JNCIA-FWV)
- Computer Science related Bachelor degree (or equivalent experience) and at least 3-4 years of experience in Network/Security Operations Center
- 5+ years of Information Security in various disciplines – specifically in Penetration testing
- Knowledge of defined security standards and frameworks
- This position requires a broad range of familiarity with principles, theories, concepts and technologies