As an Associate IT Security Analyst, you will be taking the first step into the world of cybersecurity. In this entry-level role, you will play an important part in keeping our organization safe by supporting the implementation and maintenance of essential information security measures. Your work will protect our systems from potential threats, contributing to a secure technology environment.
Responsibilities:
• Assist in monitoring network and systems for security breaches or intrusions.
• Support in conducting preliminary security assessments and audits.
• Participate in the implementation of IS and cyber security standards and procedures..
• Provide support in the evaluation of information security tools and products.
Contribute to the success of application modernization projects by supporting multiple customers with environment support and monitoring of the cloud environments (e.g. AWS, GCP) and their systemsProvide support regarding cloud security and the implementation of infrastructure to support the modernization of systemsResponsible for developing and recommending best course of action based on solid security principlesResponsible for assisting in the development of vulnerability and threat related communications for potential dissemination to warn WK employees of an emerging situationOperational Readiness Review (ORR) - Review ORR Open Office Hours chats and Jira tickets for GIS checks following up with the appropriate owner to take direction or escalateCross Training & Peer Review –Partner with each team lead as mentorsContinual KT sessions with peersLearn Container Security, working to become SMELearn KPI and Reporting, working to become SMELearn CSPM program, working with CSPM leadLearn SIEM program, working with SIEM leadAutomation Development –Support automation developers taking direction, document processesWork with automation developers to improve UX and capabilities of GIS programsSupport opportunities to displace or streamline workflowsParticipate in Team Scrums –Create tasks as user storiesKeep your tasks up to dateDocumentation and reporting support for JiraTechnical Writing & Documentation for Team ReviewHelp draft Standard Operating Procedures Internal and External for each workstream team maintainswork with Control Owners and CSAE team to draft contentHelp draft documentation for integrations with tooling from Orca & SentinelHelp draft ORR documentation updates for ORR PortalHelp draft Audit documentation for tooling and programsAutomate KPI ReportingHelp support and create KPI reporting to feed PowerBIUpdate KPI decks with Power BI charts"Tool Support & MaintenanceInvestigate CSPM Tooling's capabilities and understand our useProvide Support and Administration for user accessSupport requests for audit evidence (Tool Configurations ONLY)Create and Deliver on Ad-Hoc reporting requests from end usersDocument and support tool Integrations with tooling working with team leadsSupport Subject Matter Experts; taking direction from Team LeadsMinimum Standard Baseline (MSB)Help maintain MSB master sheet and documentation with SCM task force (includes supporting annual reviews)Help keep measures in tool up to dateShift-Left MSBHelp maintain build level policy master sheet and documentation with SCM task force (includes supporting annual reviews)Help keep policies in sync from all sourcesSIEM Support & MaintenanceInvestigate SIEM Tool's capabilities and understand our useSupport requests for audit evidence (Tool Configurations ONLY)Create and Deliver on Ad-Hoc reporting requests from users (querying tables, providing traffic checks)Document and support data connectors used in SIEM working with team leadsSupport Subject Matter Experts; taking direction from Team Leads
Skills:
• Bachelor’s degree or equivalent experience in Information Systems Management, Information Technology, Computer Science, Business, Management, Engineering, or another related discipline
• Relevant Cloud Certifications from Azure and/or AWS OR Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
• Basic understanding of cybersecurity principles and practices
• Familiarity with cloud platforms (Azure, AWS preferred)
• Knowledge of security tools and technologies (SIEM, CSPM)
• Basic scripting and automation skills (Python or PowerShell preferred)
• Strong problem-solving and analytical abilities
• Ability to analyze and interpret security data and logs• Problem-Solving: Applying general problem-solving techniques in security contexts.
• Documentation: Competence in creating and maintaining security documentation.
• Communication: Basic communication skills for interacting with team members.
• Training Support: Assisting in security training delivery under guidance.
Level criteria T1 (for internal use only):
• Requires basic knowledge of theories, principles and concepts within a technical discipline; has exposure to current technologies through coursework or internship
• Applies general knowledge of business and industry gained through education or experience
• Performs routine technical assignments and uses existing procedures to apply to technical concepts to solve standard problems
• Receives instruction, guidance and direction from more senior team member
• Impacts own work and has limited impact on work team
• Communicates straightforward information