Information Security Analyst

A Goldman Sachs | Everstone company, Cprime is a global consulting firm helping transforming businesses get in sync.  Cprime is the partner of choice for Fortune 100 companies looking to achieve value and agility.  We help visionary business leaders compose solutions, execute implementations, and exceed against business goals.  With our key partnership recognitions, including Atlassian Platinum, AWS Advanced, and SAFe Gold partner, our industry-leading software and services work in synergy to deliver transformations. Cprime is headquartered in Cary, North Carolina with offices in Chicago, Philadelphia, and Leeds, UK. We are growing our global footprint in Canada, the United Kingdom, Ukraine, EMEA, India, and Australia.
As an Information Security Analyst, you will be an important member of our internal IT Operations team that works closely with our internal groups and external clients to assess, design, and deploy solutions to security risks in an agile fashion.  You will be required to complete, or support the completion of customer/vendor security requests or assessments. You will carry out the activities to detect, identify, contain and resolve security incidents and work to analyze attack methods and tactics leveraged against the firm's information and IT portfolio. You will take part in the effort to review/produce IT security specifications for any changes or improvements to existing processes, procedures, and technology. You may also propose entirely new solutions as necessary.
**Please submit application answers and resumes in English**Must be open to some flexibility with overlap to the US timezones.

What you will do:

• Support the effort to ensure the compliance with Cprime’s Information Security Policies
• Support the IT department with the deployment and management of security controls
• Respond to incident requests and take part in the forensic investigation
• Complete security risk assessments as it pertains to our clients and vendors
• Setup and oversee software tools, configuration, permissions, etc.
• Take part in the management and deployment of the internal security training and compliance programs (i.e., Phishing Tests, Security Onboarding Training)
• Variety of other tasks and initiatives related to Cprime’s overall security practice

Qualifications and skills:

• Experience with antivirus/malware detection, monitoring tools and techniques (SIEM, EDR)
• Understanding of a broad range of IT and information security risks
• Experience with HTTP protocols, response codes, modern usage, and web scripting/automation tools
• Working knowledge of IT Security
• Experience with security frameworks and their controls, such as NIST SP-800, SOC 2 and ISO 27001/2
• Working knowledge of auditing techniques and procedures, resource management and risk assessments
• Strong deductive reasoning, critical thinking, and problem solving skills and above average professional verbal/written communication skills

Education and ceritifications:

• BS/BA Degree or equivalent experience

What will give you a step up:

• Experience with Elastic (ELK) Stack / ElasticSearch Security or similar SIEM platforms
• Familiarity the compliance auditing process under industry recognized standards
• Cyber engineering or analyst experience (government, military, or private industry)
• Recognized security certifications
• Documented training (like Lynda.com, tryhackme.com, pluralsight.com, Coursera, etc.)

#LI-REMOTE#LI-CT1

What We Believe InAt Cprime we believe in facilitating social justice action internally, in industry, and within our communities.  We believe part of our mission is to expand the minds, hearts, and opportunities of our Cprime teammates and within the broader community to include those who have been historically marginalized.
Equal Employment Opportunity Statement    Cprime is an equal-opportunity employer that is committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by federal, state, or local laws.