Job Description:
Under general direction, the IT Security Specialist will evaluate the effectiveness of internal data controls, business/technical processes, and technology platforms to ensure the integrity and security of organizational systems and data. The role involves performing security assessments and integrity reviews across IT systems and datasets.
Key Responsibilities
- Evaluate internal controls, security processes, and system integrity
- Perform security assessments of IT systems and organizational data
- Troubleshoot technical/security issues and create documentation
- Collaborate in client-facing environments (email, chat, calls, screen sharing)
- Stay updated with evolving cybersecurity threats and best practices
Required Skills & Experience (Must Have)
- Minimum 2+ years hands-on experience in at least one:
- SOC Analyst
- Threat Hunting
- Detection Engineering
- Network Security Engineering
- 2+ years experience in:
- Technical troubleshooting
- Documentation creation
- Experience working in client-facing environments
- Ability to demonstrate knowledge in at least 3 of the following areas:
- Governance, Risk & Compliance (GRC)
- Cloud Security / Hosted Applications
- Containerization
- Application Security
- Network Security / Zero Trust (ZTNA)
- Endpoint Security / OS Hardening
- Security Automation (PowerShell, Python, Bash)
- Malware Analysis / Forensics
- Incident Response & Remediation
- Penetration Testing
- Cyber Threat Intelligence (CTI)
- Vulnerability Management
- Data Protection
- Strong willingness to learn and stay updated with the threat landscape
Preferred Qualifications (Nice to Have)
- Certifications:
- ISACA CRISC
- ISC2 SSCP
- Hands-on experience with:
- SOAR platforms and automation tools
- AI tools/models for reporting or security automation
- Familiarity with frameworks:
- NIST (CSF 2.0, 800-53, 800-207)
- MITRE ATT&CK
- OWASP
- Exposure to web application penetration testing
- Active participation in the cybersecurity community
