Information Security Analyst
$109,600 - $164,400/Yr
Mannkind Corporation - Danbury, CT
posted about 2 months ago
Full-time - Mid Level
Onsite - Danbury, CT
Chemical Manufacturing
About the position
The Information Security Analyst at MannKind Corporation plays a crucial role in safeguarding the integrity and security of the company's data across both on-premises and cloud-based applications. This hands-on position involves resolving technical issues, implementing security measures, and ensuring compliance with security standards. The analyst will work closely with IT teams to integrate security practices into the development lifecycle and provide training on cybersecurity best practices.
Responsibilities
- Implement and maintain the Center for Internet Security (CIS) Controls framework.
- Manage security measures for information systems to prevent breaches and detect vulnerabilities.
- Conduct regular system audits for compliance with security standards.
- Collaborate with IT teams to integrate security practices into the development lifecycle.
- Provide training and guidance to IT staff on cybersecurity best practices.
- Stay updated on the latest cybersecurity trends and technologies.
- Assist with updating and reviewing the System Security Plan (SSP).
- Develop controls such as firewalls, data leakage protection systems, and encryption.
- Evaluate, categorize, and remediate security events and vulnerabilities.
- Identify security gaps and propose enhancements to security controls.
- Participate in cybersecurity projects to ensure timely delivery and compliance with information protection requirements.
- Maintain relationships with Managed Security Services Providers.
- Own vulnerability management and implement remediation steps.
- Manage patching for servers and endpoints.
- Participate in on-call rotation for emergency events.
Requirements
- BA/BS degree in information technology, compliance, information management, infrastructure, or information security.
- 5 to 7 years of work experience in a related field.
- Strong analytical skills developed through training in Cybersecurity, Information Systems, or Computer Science.
- Experience managing Rapid7 and NextGen AV systems.
- Hands-on experience running AI models.
- Familiarity with information security frameworks such as CIS and NIST.
- Working knowledge of network switches, routers, firewalls, and VPN.
- Experience with DLP, antivirus, antimalware, IDS/IPS, SIEM, and email security.
- Knowledge of security best practices including encryption, hashing, and vulnerability scans.
- Ability to enhance the vulnerability management program and propose solutions for vulnerabilities.
- Knowledge of cloud security for AWS, Google Cloud Platform, or Azure.
- Prior experience managing EDR solutions and SIEM.
Nice-to-haves
- Experience in a HIPAA and FDA regulated environment.
Benefits
- Competitive salary ranging from $109,600 to $164,400 per year.
