Protect company networks and data through security monitoring (SIEM), vulnerability assessments and penetration testing, incident response, firewall/encryption management, audits for compliance, vendor risk reviews, employee security training, and policy development.
An Information Security Analyst is the digital "guardian" of a company's data. Their primary mission is to protect the organization's computer networks and systems from cyberattacks, data breaches, and unauthorized access.
Core Roles & Responsibilities
- Security Monitoring: Using SIEM (Security Information and Event Management) tools like Splunk or IBM QRadar to monitor network traffic for suspicious activity.
- Vulnerability Assessment: Conducting regular scans and Penetration Testing to find "holes" in the company's defenses before hackers do.
- Incident Response: Leading the "fire drill" when a breach occurs—containing the threat, investigating the root cause, and restoring secure operations.
- Firewall & Encryption Management: Setting up and maintaining Firewalls and data encryption programs to protect sensitive "data at rest" and "data in transit."
- Security Auditing: Performing internal audits to ensure the company meets regulatory standards like SOC2, ISO 27001, or HIPAA.
- Risk Assessment: Evaluating the security of third-party vendors and new software before they are integrated into the company ecosystem.
- Employee Awareness Training: Educating staff on how to spot Phishing emails and follow "clean desk" policies to prevent human-error breaches.
- Policy Development: Drafting and enforcing the "rules of the road," such as Password Policies and Access Control (who gets to see what data).
Essential Technical Stack
- Endpoint Protection: Mastery of tools like CrowdStrike or SentinelOne.
- Cloud Security: Securing environments in AWS, Azure, or Google Cloud.
- Networking: Deep knowledge of TCP/IP, DNS, and VPN protocols.
Top Skills
Splunk,Ibm Qradar,Siem,Crowdstrike,Sentinelone,Aws,Azure,Google Cloud,Firewall,Encryption,Tcp/Ip,Dns,Vpn,Penetration Testing,Soc2,Iso 27001,Hipaa,Endpoint Protection,Cloud Security
Similar Jobs
Insurance • Financial Services
The Information Security Analyst I monitors and analyzes security-related activities, identifies data risks, and supports information security investigations and compliance efforts.
Top Skills:
Data Loss Prevention TechnologiesNetwork+Security+
Security
The Information Security Compliance Analyst manages digital risk, supports audits, promotes security awareness, and ensures compliance with cybersecurity policies.
Top Skills:
CisNist Csf
Healthtech
The Sr. IT Security Analyst manages IT security and risk across the enterprise, conducts vulnerability assessments, develops security policies, and coordinates with vendors. They also provide training and report on risk remediation efforts.
Top Skills:
CisspMicrosoft Windows EnterpriseNetworkingNist Cybersecurity Framework
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
