Information Security Analyst
$76,186 - $95,233/Yr
Iberdrola - Orange, CT
posted 4 days ago
Full-time
Orange, CT
Utilities
About the position
The Information Security Analyst will reduce cybersecurity risk in the organization by assisting in the planning, implementation, and monitoring of security measures for the protection of cyber assets and information. Responsible for ensuring the security of our applications throughout their lifecycle by working closely with development teams to identify and mitigate security vulnerabilities, implement security best practices, and respond to security incidents.
Responsibilities
- Conduct security assessments and code reviews to identify vulnerabilities in applications.
- Collaborate with development teams to integrate security into the software development lifecycle (SDLC).
- Perform penetration testing and vulnerability assessments on applications.
- Monitor and respond to security incidents related to applications.
- Stay up to date with the latest security trends, vulnerabilities, and technologies.
- Assist in the development and maintenance of security tools and scripts.
- Assist in monitoring of security events for cyber environment and perform associated analysis, escalation, remediation, and incident response.
- Assist in the research, development, and implementation of new security technologies that strengthen Avangrid's security posture.
Requirements
- BS/BA degree in an IT related discipline preferred, or additional years of relevant experience in lieu of the degree requirement.
- 2 years' experience in the Information Security Field or related coursework.
- Knowledge of Application Security, Network Security, Vulnerability Scanning Tools, Vulnerability Management, Operating systems.
- Experience with cyber incident response.
- Ability to apply knowledge to prevent or mitigate exposure and detect potential compromise through event analysis.
- Ability to work both independently and with teams and clearly communicate technical issues.
- Ability to create and/or maintain well written documentation.
- Strong communication skills.
Nice-to-haves
- Experience working in a regulated utility or other regulated industry (NERC, SOX, GLBA, PCI) is a plus.
- Certifications such as CCNA, CEH, CCNP, CCSP, GIAC, CISSP, Security+ are preferred.
- Knowledge or previous experience in application security, ethical hacking, computer forensics, and cybersecurity.
Benefits
- Diverse workforce and inclusive culture.
- Fair and equal employment and advancement opportunities.
