Information Security Analyst

Job not on LinkedIn

🔥 0 minutes ago

🦀 Maryland – Remote

🦀 Maryland – Remote

⏰ Full Time

🟡 Mid-level

🟠 Senior

🔐 Security Analyst

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Cisive

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 1977

👥 HR Tech

Healthcare • Transportation • HR Tech

Cisive is a compliance-focused talent screening and workforce risk management company that provides background checks, drug and occupational health testing, ongoing monitoring, electronic I-9, and executive intelligence through a single, integrated platform. They serve highly regulated industries—particularly healthcare and transportation—offering specialized products like PreCheck for healthcare and Driver iQ for driver screening, and emphasize fast, accurate results and regulatory compliance for employers.

📋 Description

• Monitor, tune, and triage alerts across the SIEM platform, escalating confirmed incidents per established runbooks • Manage the vulnerability management lifecycle— including scanning, prioritization, remediation tracking, and executive reporting • Support endpoint security, email security, and network monitoring tools; identify gaps and recommend configuration improvements • Conduct periodic threat hunting activities and contribute to the development of detection rules and playbooks • Participate in incident response activities including containment, eradication, and post-incident reviews • Support ongoing SOC 2 Type II compliance efforts, including evidence collection, control testing, and coordination with external auditors • Assist with NIST CSF assessments — mapping current controls to framework functions and identifying gaps for remediation • Maintain and update security policies, standards, and procedures in collaboration with senior team members • Conduct periodic security risk assessments and contribute findings to the organization risk register • Track remediation efforts for identified risks and control deficiencies through to closure • Partner with IT, Engineering, and business stakeholders to embed security best practices into day-to-day operations • Assist in security awareness initiatives and provide guidance to staff on security topics • Prepare clear, concise reporting on security metrics, vulnerability status, and compliance posture for management

🎯 Requirements

• 3–5 years of experience in an information security role with exposure to both technical operations and compliance functions • Hands-on experience with SIEM platforms (Splunk, Microsoft Sentinel, or equivalent) • Working knowledge of vulnerability management tools such as Tenable Nessus/IO or Qualys • Demonstrated understanding of SOC 2 Trust Service Criteria and NIST Cybersecurity Framework • Familiarity with common attack techniques and defensive countermeasures (MITRE ATT&CK familiarity a plus) • Strong analytical and problem-solving skills • Excellent written and verbal communication skills; ability to translate technical findings for non-technical audiences

🏖️ Benefits

• Health insurance • Paid time off • Flexible work arrangements • Professional development • Wellness programs