McGrath RentCorp

Apply for this job

IT Security Analyst - Hybrid* (Finance)



The specific pay rate and level will depend on the successful candidate's qualifications, prior experience and location.

“A Day in the Life”

The IT Security Analyst plays a key role in protecting the company from cybersecurity threats by monitoring, analyzing, and mitigating incidents. They proactively manage vulnerabilities by conducting scans, assessing risks, and working with teams to strengthen security defenses. Additionally, they collaborate with stakeholders and vendors to develop and implement strategies, policies, and controls for effective risk management.

“What You'll Do”

  • Perform threat monitoring and analysis using various threat detection, investigation and response (TDIR) capable tools, such as security information and event management (SEIM) and extended detection and response (XDR) platforms.
  • Triage alerts, identify and remove false positives, escalate genuine identified attacks and engage in the incident response protocols appropriately.
  • Perform multi-telemetry-based threat investigations to identify cyber threats both internally and externally of the organization.
  • Document formal, technical incident reports and conduct major incident reviews providing after action reporting with mitigating actions, ensure actions are completed.
  • Provide IT teams with incident support, including mitigating actions to contain activity and advisory for remedial actions.
  • Work with threat detection teams with incident support, including carrying out mitigating actions to contain activity and advisory for remedial actions.
  • Carry out analysis and testing for the purpose of identifying vulnerabilities, misconfigurations or other exposures, and the validation of user policies.
  • Maintain adherence to the organization's policies, procedures and compliance requirements.
  • Develop and implement procedures designed to support implementation within the organization.
  • Proactively monitor, investigate, and resolve cybersecurity bulletins, events, and vulnerabilities.

“Must Haves

  • Bachelor's degree in a relevant field or equivalent combination of experience and certifications.
  • Monitoring security information and event management (SIEM) systems & tools.
  • Knowledge with network and security technologies, such as firewalls, IDS/IPS and EDR/EPP, Threat Hunting.
  • Configuring and utilizing vulnerability management technologies.
  • Monitoring networks, detecting threats, and responding to incidents.
  • Report writing, investigational techniques and communicating to large audiences.
  • IT security and compliance standards for a publicly traded company, such as ISO 27001, SOC 2 Type2, NIST CSF and SOX, CMMC, PCI experience.
  • Solid knowledge and skills in IT systems and networks, IT audit, penetration testing, red team or incident supervision and firewalls, switches, wireless networking, Telephony/UCaaS, Microsoft based Infrastructure, Azure, and virtualization.
  • Governance, Risk and Compliance, Identity Access and Asset Management, Security Operations/Incident Response, Threat Vulnerability Management and Security Awareness.
  • Project management, leadership, organization, managed service providers and customer service.
  • Strong problem-solving and analytical skills.

“Nice to Haves”

  • Familiar with Cloud Security, Application Security, Data Protection, Secure System Computing, Secure Network, Physical Security and Disaster Recovery is preferred.
  • Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), CompTIA Security+, CompTIA CySA+, EC council (CSA) SOC is a plus.

Special Considerations

  • Approximately 15% travel may be needed

Perks

  • It's a great place to work where you are given the space to share ideas and opinions and the bottom-line is “YOU” matter!
  • We value our employees' Quality of Life, and when it comes to mental health, recovery, and self-care, there is no one-size-fits-all approach that is why we provide resources where employees can find information on several wellness topics like nutrition, exercise, emotional health, and more!
  • We all need to rest and recharge, that's why in addition to vacation and sick time we also offer 10 days + 2 half days company-paid holidays!
  • We offer a variety of benefits that offer you flexibility and choice, a simple selection experience, and the ability to take control over your benefit spending.
  • 401(k) Retirement Plan with Company Match.
  • Life is unpredictable, having Company Paid Life Insurance and knowing that your loved ones will be protected financially in the event of an unexpected death can give you peace of mind.
  • We also offer DailyPay, HSA, FSA, EAP and Pet Insurance!

The pre-employment screening process includes a criminal background check. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, on the basis of disability and any other legally protected status.Our company uses E-Verify to confirm employment eligibility.

#MGRC

#LI-Hybrid Apply

Apply Here done