Information Security Analyst II

Hi, I'm Lolitta Tucker , your Recruiter and guide to joining CSG! We are excited to learn more about you and your unique background. The Information Security Analyst II will support the implementation and administration of information security policies, practices, procedures, and technologies to ensure the protection of networks, systems, applications, and data.This role will be looked to as an information security professional within the organization, helping ensure compliance with all security policies and standards, as well as with industry regulations and laws.This role will also be involved with day-to-day security operations by responding to security events of interest and recommending corrective action by working with IT and non-IT team members.We are looking for an Information Security Analyst II who will: Monitor, respond, and work to resolution alerts from security tools such as endpoint detection and response (EDR), email security, firewall, security event and information management (SIEM), IPS/IDS, Application Firewall, malware, change detection (FIM), user behavioral analytics, rogue wireless network alerts, and security system health monitoring.Participate in the organization's incident response plan and perform incident reporting on an as needed basis. Experience in incident response, to include evidence collection and preservation, timelining activities, and conducting technical interviews. Experience with automated workflow tools and Strong analytical and problem-solving skills; Python experience a plus. Collaborate with team members and assist in developing and implementing SOC IR strategies, along with refining and testing incident response playbooks and procedures. Coordinate with internal and external stakeholders during incidents. Stay updated on emerging cybersecurity threats and trends.Perform security engineering tasks as required to include alert tuning, system maintenance, determining and capturing key information feeds, etc.Participate and fulfill requests from audit, compliance, and regulatory functions, including and not limited to Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), emerging state and Federal privacy laws, and general security auditingMust be able to work outside normal business hours when needed in order to perform diagnosis and/or implementation of product releases or changes so that normal business workflow is not interruptedThis position requires domestic and/or international travel of up to 5%Is this opportunity right for you? We are looking for candidates with:A bachelor’s degree in computer science, Information Security, related field, or equivalent experience2+ years of experience working extensively within security or highly technical IT fieldsExperience with various functions within the entire incident response life cycle including security system engineering, alert monitoring, triage, incident analysis (host and network forensics, malware analysis, etc.) and incident managementExperience working with information security technologies, such as IDS/IPS, malware prevention, database activity monitoring, secure password repository, multi-factor authentication, SIEM, SPAM prevention, web content filtering, IdM/IAM, encryption and encryption key management, DLP, change detection, and vulnerability scannersKnowledge of TCP/IP: must be able to demonstrate technical understanding of all layers of the TCP/IP stack, including familiarity with major application-layer protocols such as HTTP, HTTPS, FTP, SFTP, FTPS, SMTP, DNS, etc.; must be able to read and understand a packet trace; must be able to read and interpret network access control listsA clear understanding of a variety of network and application attacks: examples include DoS/DDoS, buffer overflows, SQL injection, reconnaissance scanning, and evasive methods attackers use to avoid detection; must be able to demonstrate a minimum level of familiarity with well-known vulnerabilities and exploitsWorking knowledge with IT security, compliance, and regulatory requirements, such as Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), Health Insurance Portability and Accountability Act (HIPAA) , state and Federal privacy lawsAbility to read, write, speak and understand the English language in a business environmentCSGer Perks & Benefits Work from HomeEmployee Belonging GroupsHealthcare: Dental, Medical, and VisionPaid Vacation, Volunteer, and Holiday Time OffAnd so much more!View More Benefits Please submit your application at csgi.com/careers. Applications will be accepted for at least 5 days from original posting date.Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.Position Pay Range:This range represents the low and high end of the salary range for this pos