As an Information Security Analyst, you will play a key role in protecting the security and integrity of IT environment. You will be responsible for detecting and addressing security vulnerabilities, maintaining compliance with regulatory standards (PCI, SOX, NIST), and supporting security infrastructure and incident response processes.
Hybrid work - 3 days per week from the office
responsibilities :
Ensure the security and integrity of the IT environment through the implementation and maintenance of policies and controls
Administer and maintain security tools, including:
a) SIEM, EDR/XDR, IAM, PAM, PKI, AV systems
b) Vulnerability scanning tools (including scan execution and remediation support)
Perform daily operational tasks:
a) User account modifications, vendor access management, threat whitelisting/blacklisting
Maintain up-to-date documentation for security policies and procedures aligned with PCI, SOX, and NIST standards
Support and participate in PCI, SOX audits, and annual penetration testing
Collaborate with cross-functional IT and business teams to ensure secure implementation of applications and services
Respond to and resolve security-related support issues and inquiries
Participate in proactive initiatives to improve security posture across the organization
Contribute to the Disaster Recovery planning and testing, ensuring RTOs are met
Stay informed about evolving security trends, tools, and practices
Provide periodic after-hours on-call support and perform other related duties as assigned
requirements-expected :
Minimum 3 years of hands-on experience with IT security systems and practices
Bachelor’s degree in an IT-related field or equivalent experience
Proven experience working with:
a) SIEM, XDR/EDR, IAM, PAM, PKI, Anti-Virus systems
b) Security audit processes and regulatory compliance (PCI, SOX, NIST)
c) Scripting for task automation (e.g., PowerShell)
Strong understanding of security architecture, system administration, and disaster recovery principles
Excellent organizational skills and ability to manage multiple tasks and priorities
Strong analytical and problem-solving abilities in complex IT environments
Ability to communicate technical information clearly to both technical and non-technical audiences
Proactive mindset with a strong sense of ownership and accountability
Team player with strong collaboration, leadership, and interpersonal skills
High level of professionalism, maturity, and confidence under pressure