IT Security Analyst

Job not on LinkedIn

November 8

🏄 California – Remote

Although this job is listed in California, this company may be open to hiring remote in other states.

💵 $90k - $95k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🔐 Security Analyst

Apply Now

Receive Emails with Similar Jobs

California FAIR Plan Association

WebsiteLinkedInAll Job Openings

Insurance

California FAIR Plan Association is an insurance organization that provides basic fire insurance coverage for high-risk properties in California when traditional insurance companies will not offer coverage. The FAIR Plan includes dwelling coverage for owner- or tenant-occupied dwellings with up to four family units, as well as commercial coverage for business-owned buildings. They also offer earthquake insurance through the California Earthquake Authority. The organization helps Californians access necessary fire insurance via licensed brokers and is essentially a temporary insurance solution when coverage is unavailable from traditional insurers.

51 - 200 employees

Founded 1968

📋 Description

• Implement security projects and support risk management strategies. • Implement, update, and maintain Windows servers, backups, O365 suite, AWS and overall cloud infrastructure, networking devices, and security tools. • Conduct vulnerability scans, document, report, and remediate vulnerabilities and risks. • Monitor network and host-based intrusion detection/prevention systems. • Lead data governance including data mapping, data flows, DLP, and auditing of controls. • Lead identity management including securing authentication methods with third party SaaS solutions, setting naming conventions, define roles and permissions, and policies. Audit user access, onboarding/offboarding, and making sure our policies and processes are adhered to. • Identify and implement appropriate security safeguards. • Lead asset management program. Define and refine the current system to track current assets, identify unidentified software and devices, and take necessary action to ensure only approved devices and software are on our systems. • Monitor and analyze network traffic, intrusion attempts, activity logs, and system alerts for trends, anomalies, and potential security breaches. • Lead developing and implementing security policies and procedures with adherence to well-known frameworks. • Keep current on cybersecurity threat landscape and be proactive on preventing and mitigating new threats. • Manage vendors and identify the security of third-party vendors and collaborate to meet security requirements. • Drive security awareness program and ensure leadership and end users are well informed on current risks and their role in keeping our environment secure. • Lead incident response and remediation. • Participate in 24x7 weekly on call rotation to handle emergency and security related events.

🎯 Requirements

• Bachelor’s degree or equivalent in the field of IT/Computer Science or 3-5 years equivalent work experience. • Technical knowledge of client/server technology, server virtualization w/ Vmware, networking systems and solutions, middleware concepts, IT security, storage/SAN management, mission critical/high availability concepts, consolidation, data warehousing, cloud computing and technologies. • Technical knowledge of AWS including: Cloudtrail, AWS WAF, networking, and EC2. • Advanced knowledge of O365 including: Intune, Conditional Access policies, EntraID, Exchange Online, Sharepoint. • Strong written and communication skill required. • CompTIA Security+ certification or CASP. • AWS Cloud Practitioner. • Knowledge of Security Frameworks: ISO 27001, PCI-DSS, SOC I/II, CIS, NIS. • Certified Information Systems Security Professional (CISSP) or CISM.