JMARK is an IT managed services provider headquartered in Springfield, Missouri, with a second office in Tulsa, Oklahoma, and numerous full-time remote employees spread throughout the country. The reason JMARK is a "best" place to work can be summed up in one word: culture. Nurturing a respectful, supportive, dynamic, spirited culture among the more than 125 individuals that make up JMARK is a point of passion for CEO Thomas Douglas. It matters so much to him that every decision made regarding JMARK is run through the filter of how it will impact the culture at large—as well as every employee on an individual level.
This dedication to creating a positive environment has been instilled in every leader at any level—including the board of directors—and passed down to every employee in the company. From the first moment one walks in the door at JMARK, it is clear that this is a true family made up of teammates who care for one another, cheer each other on, and thrive on coming together to achieve greater things together than could ever be done alone. In fact, this feeling of fellowship is so strong that it transcends the distances between teammates working from home or in different locations. The words "People First" are in our slogan, and everything that happens at JMARK leads back to that phrase.
Position Summary:
The Security Analyst will be responsible for monitoring, investigating, correlating, and responding to cybersecurity alerts and incidents. Responsible for execution of IT Security procedures for vulnerability management and maintenance of cybersecurity tools and applications. Responsible for responding to support requests concerning IT Security tools and applications.
The Security Analyst will work with team members, third party vendors, and various departments to mitigate cyber risk. The Security Analyst will plan, implement, upgrade, and monitor security projects for the protection of the JMARK's internal and client computer networks and information. This role will also participate as a SME in projects executed by other departments.
The Security Analyst will support other areas of security risk management to include vendor management, risk assessment, compliance, and audit.
Duties and Responsibilities:
- Administers, maintains, and updates endpoint, network, and cloud security tools and systems, such as SIEM/SOARs, EDR, on-premise and cloud-based security systems
- Responds to end-user generated support requests regarding security tools and systems
- Conducts security event monitoring and analysis using system generated alerts and security tools
- Performs security incident response activities to identify, triage, contain, and eradicate various information technology threats
- Maintains and enhances existing security tools and systems, pursuing the implementation of security industry and vendor best-practices
- Provides security design and consulting support to other departments to ensure security industry and vendor best-practices are implemented
- Develops, distributes, and monitors anti-phishing campaigns
- Leverages existing systems to identify and communicate vulnerabilities, coordinating remediation efforts with Internal IT and other departments
- Promotes Cybersecurity awareness within the organization
- Monitors adherence to Cybersecurity policies, standards, and controls
- Assists with compliance and audit related tasks and requests
- Keeps abreast of industry trends, such as threats, risks, and controls
Skills and Qualifications:
It is impossible to list all of the skills and qualifications that an individual will need to efficiently perform in this position. Listed are general skills and qualifications that individuals should have or should be striving to achieve in order to be qualified for this position.
- Understanding of security concepts such as cyber-attacks and techniques, threat vectors, risk management, and incident management.
- Server Experience
- Skills with forensic discovery and preservation
- Skills in Incident Management and response
- Skills in security best practices and analysis
- Skills in secure network topology design
- Skills in threat management
- Skills with vendor management
Licenses & Registrations:
- Valid driver's license
- Proof of vehicle insurance
- Reliable and suitable transportation that can be used as required to perform duties, if needed.
Experience:
- Experience focused on Networks and Security with experience in working with teams.
- BS Degree in IT Networking and/or Security or relevant work experience.
- Experience as part of a Microsoft Partner organization
- Experience working for a managed services organization
- Certification in one of the following preferred: Security+, CISSP, GCIH, GSEC