As an Information Security Analyst, you will be instrumental in safeguarding our information systems by conducting thorough assessments of security controls. Your role will involve evaluating the effectiveness of security measures, ensuring compliance with established frameworks, and identifying vulnerabilities in applications and databases. You'll work within the NIST 800-53 security framework to assess new systems and document their security posture to facilitate the Authority to Operate (ATO) process. Additionally, you will play a key role in ongoing audits and monitoring, ensuring that security controls remain effective over time. This position offers an excellent opportunity to deepen your understanding of security compliance while collaborating with various stakeholders to align with security standards and best practices.
IT Languages:
Python
PowerShell
The responsibilities of the Information Security Analyst include a variety of critical tasks that contribute to the overall security posture of the organization. You will conduct security control tests to assess both design and operational effectiveness, ensuring that vulnerabilities are identified and remediated efficiently.:
Manage remediation tasks and ensure timely completion;; Lead analysis of internal and third-party vulnerability scans;; Conduct cyber security risk assessments and serve as a liaison for the security team;; Assist in incident response processes with IT teams;; Create security operation controls, playbooks, and procedures;; Stay updated on current trends and emerging threats in cybersecurity
Spoken Languages:
English
Skillset:
NIST SP 800-53
CIS Critical Security Controls
OWASP
MITRE ATT&CK
ISO27001
Network security
Incident response
Soft Skills:
Analytical thinking
Attention to detail
Problem-solving
Communication skills
Team collaboration
Qualifications:
Bachelor’s degree in a related field
Professional security certifications (CySA+, Security+, CISSP, CCSP, CISM, CISA, AWS Certified Security Specialty) or willingness to obtain certification
Working knowledge of AWS Security tools
Strong understanding of cloud security concepts
Familiarity with information security operational concepts
Years of Experience:
10
Location:
United States
Job Benefits:
Competitive base salary
Flexible working hours
Remote work options
401K with matching contributions
Parental leave
Medical, dental, and vision insurance
Flex Spending Account
Company-provided short-term disability
Company-provided life insurance
Commuter benefits
Generous paid time off
Eleven paid holidays
Professional development opportunities
New business referral bonus
Working Conditions:
Full Time
Employment Type:
Permanent Contract
Company Culture:
We prioritize diversity, equity, and inclusion in our workplace, fostering an environment that values individual contributions and promotes professional growth.
Opportunities For Advancement:
Professional development, Career growth opportunities, Involvement in special projects
We are seeking a skilled Security Engineer for a six-month contract position focused on enhancing our cybersecurity framework. In this role, you will analyze threat intelligence related to ransomware groups and their attack methodologies, defining metrics that will bolster both proactive and reactive defenses against such threats. You will conduct ransomware exercises to test our current security posture and implement protective measures against potential attacks. This position requires collaboration with various departments to develop robust processes and improve our overall cybersecurity capabilities. If you have a strong background in cybersecurity and are passionate about defending against ransomware threats, we encourage you to apply.
IT Languages:
Python
Java
C++
As a Security Engineer, your primary responsibilities will include analyzing threats, conducting tests, and developing protective measures against ransomware attacks.:
Analyze threat intelligence of ransomware groups and attack methods;; Define metrics for proactive and reactive ransomware protection;; Conduct ransomware exercises and drive mitigative actions;; Develop protection mechanisms against ransomware attacks;; Review and implement security features in ransomware protection tools;; Collaborate with cross-departmental teams to enhance cybersecurity processes
Spoken Languages:
English;; Swedish
Skillset:
Red Teaming
CTF
MITRE ATT&CK
Penetration Testing
Ransomware Protection
Soft Skills:
Strong analytical skills
Excellent communication
Problem-solving abilities
Innovative mindset
Qualifications:
Proven experience in cybersecurity
Technical understanding of ransomware threats and tactics
Strong project management skills
Experience in managing large-scale infrastructure rebuilds
Years of Experience:
5
Location:
Gothenburg, Västra Götaland County, Sweden, EU
Job Benefits:
Health insurance
Flexible working hours
Professional development opportunities
Work-life balance initiatives
Working Conditions:
Full Time
Employment Type:
Temporary Contract
Company Culture:
Our company values collaboration, innovation, and a proactive approach to cybersecurity. We foster an environment where employees are encouraged to share ideas and develop new solutions for complex challenges.
Opportunities For Advancement:
Potential for contract extension, Opportunities to lead future projects, Career growth in cybersecurity roles