Job Summary:
We are seeking an experienced and detail-oriented Network Security Analyst with 5+ years of expertise in security, network infrastructure, vulnerability management, and threat detection. This role requires a deep understanding of network security principles and hands-on experience with Security Information and Event Management (SIEM) tools such as Splunk and Sentinel. The ideal candidate will play a crucial role in monitoring, analyzing, and responding to network security threats, ensuring the integrity and confidentiality of our organization's infrastructure.
Key Responsibilities:
- Network Security Monitoring & Threat Detection:
- Continuously monitor network traffic and systems to identify potential security threats and incidents.
- Utilize SIEM tools like Splunk and Sentinel to collect, analyze, and correlate security events and logs.
- Investigate and analyze alerts, triage security incidents, and work with the response team to mitigate risks.
- Network Infrastructure Security:
- Implement and manage network security controls across various platforms to protect data and systems.
- Work closely with the IT team to ensure network devices (firewalls, routers, switches, etc.) are configured securely.
- Assess network infrastructure vulnerabilities and recommend solutions to mitigate risks.
- Vulnerability Management:
- Perform vulnerability assessments and coordinate patch management for network devices and systems.
- Conduct regular vulnerability scanning and threat analysis to identify security weaknesses.
- Collaborate with internal teams to prioritize and remediate vulnerabilities based on risk.
- Incident Response & Remediation:
- Lead the investigation of security incidents, identifying root causes and providing recommendations for remediation.
- Develop and implement incident response plans for network-related security incidents.
- Assist in the creation and implementation of security policies, procedures, and guidelines to protect network assets.
- Collaboration & Reporting:
- Work closely with cross-functional teams, including IT, network operations, and compliance teams, to ensure network security best practices.
- Prepare reports for senior leadership on network security status, incidents, and ongoing improvements.
- Provide guidance and mentorship to junior team members and assist with security awareness training.
Required Qualifications:
- Minimum 5+ years of experience in network security, threat detection, vulnerability management, or a related field.
- Hands-on experience with SIEM tools (e.g., Splunk, Sentinel) for security monitoring and incident analysis.
- Solid understanding of network protocols, firewalls, intrusion detection/prevention systems (IDS/IPS), and VPN technologies.
- Strong knowledge of network infrastructure (TCP/IP, DNS, HTTP/S, etc.) and security concepts (NIST, ISO, CIS).
- Proficient in vulnerability management tools and processes (e.g., Nessus, Qualys, Rapid7).
- Experience with security incident response, including root cause analysis and remediation.
- Familiarity with cloud security (e.g., AWS, Azure) and securing cloud infrastructure.
- Knowledge of network traffic analysis and familiarity with security tools like Wireshark.
Certifications (Preferred):
- CISSP (Certified Information Systems Security Professional)
- CompTIA Security+
- CEH (Certified Ethical Hacker)
- CISM (Certified Information Security Manager)
- Cisco CCNP Security or equivalent network security certificatio
Candidate must be willing to go onsite 3 days a week.