Information Security Analyst

Location: This role is REMOTE and open to candidates nationwide in the United States.

Our Industry: Technology for Small and Medium Size Business (SMB):

AbacusNext is a leading technology provider for legal, accounting, and compliance-focused professionals. We empower our customers to grow their businesses, better serve their clients, and operate at peak efficiency—all within a secure, cloud-enabled ecosystem.

We provide purpose-built, cloud-based solutions for small and medium-sized Legal and Accounting firms to support a secure and cloud-enabled practice.

Our product portfolio includes case and practice management, payment processing, private cloud hosting, and document automation solutions designed to make work easier for more than 1 million global users.

Our highly differentiated cloud infrastructure puts customers’ business data and vital applications into a virtual workspace accessible anywhere, anytime, and from any device. www.abacusnext.com

Our Culture: Cutting-edge cloud technology with market needed capabilities:

We know that creativity doesn't happen on-demand. Developing cutting-edge cloud technology takes great minds and talented people working together in a collaborative environment. That is why we are committed to fostering an innovative, agile company culture. We encourage our teams to come together and experiment with new concepts, research new approaches and test out new technologies. We believe that being part of our team will make a difference in the world.

Our Mission: Technology and services for SMB customers to run their business:

To provide professionals in highly-regulated industries the technology and services they need to run their business—anytime, anywhere. We are with our customers every step of the way, helping them grow, evolve, and better serve their clients.

Your Mission:

Information Security Analysts plan and carry out security measures to protect the organization's computer networks and systems. Their responsibilities are continually expanding as the number of cyberattacks increase. Information Security Analysts job requirements include but are not limited to maintaining the integrity and security of enterprise-wide applications, systems, and networks; supporting information security initiatives through both predictive and reactive analysis; coordinating resources during enterprise incident response efforts and driving incidents to timely and complete resolution. They possess critical thinking and analysis skills – understanding attack signatures, tactics, techniques, and procedures associated with the current threat landscape.

As a member of the AbacusNext INFOSEC team, the Information Security Analyst will support the Information Security strategy through the implementation, integration and maintenance of application and infrastructure security. In addition to this, the role takes part in ensuring “secure-by-design” practices in support of cybersecurity best practices, industry standards, frameworks, regulations, and AbacusNext policies and procedures.

Responsibilities Include:

• Security and business continuity threats and risks have been handled in a timely manner
• Security and IT tools are used appropriately to prevent and detect key technical risks to the enterprise
• Security projects are delivered with security solutions within agreed upon timeframes
• Successful delivery and continuous monitoring of AbacusNext’s security controls, capabilities, and compliance levels
• Identified development opportunities and training are undertaken to progress as a cybersecurity professional
• Monitor applications, infrastructure, and networks for security issues
• Investigate security breaches and other information security incidents
• Document security incidents and assess the damage they cause
• Work with the INFOSEC team to perform continuous security assessments tests and identify application/system/network vulnerabilities
• Plan and develop remediation plans from detected vulnerabilities IAW the organizations risk profile to maintain a high-security standard
• Develop company-wide best practices for Information Security
• Support internal penetration testing efforts
• Research security enhancements and make recommendations to management
• Stay up to date on information technology trends and security standards

Requirements

• Bachelor's degree in computer science, information systems management, or related field
• Experience in information security or related field
• Experience with fundamental cybersecurity concepts
• Skills to organize and manage time to meet all task and project goals
• Experience communicating complex technical subjects both technical and non-technical audiences
• Understanding of industry compliance standards and regulations (ISO, NIST, PCI DSS, SOC II Type 2, CIS, GDPR, CCPA, etc.)
• Experience conducting vulnerability scans and recognizing vulnerabilities in security systems
• Demonstrated knowledge of computer network penetration testing, tools, and techniques
• Ability to identify and mitigate network vulnerabilities and explain how to avoid them
• Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact
• Information security policy, standards, and guidelines preparation and maintenance experience
• Information security metrics and status report preparation and maintenance experience
• Experience with project management and organizational skills
• Strong proficiency with common productivity software such as Microsoft Visio, Excel, and online collaboration tools
• Must possess at least one of the following foundational industry certifications: Security+, SSCP, CySA+, CSX or similar
• Bachelor's degree in Information Technology, Cyber Security, Management of Information Systems, Computer Science, or related field

Benefits

• Medical, Dental, Vision, Life Insurance, and Supplemental Insurance
• 401k
• Flexible PTO
• Sick Days

Employee Perks:

• Professional and Financial Growth
• Great culture and environment
• Social, Health, and Wellness Events (now all virtual)
• Anniversary Gifts
• Birthday Time Off
• Employee discount program through TicketsAtWork
• 15% Off Gunnar Optik Eyeware

Equal Employment Opportunity: AbacusNext is an Equal Opportunity, Affirmative Action Employer.