Endpoint Security Analyst at TEKsystems

*This role is not eligible for C2C/Sponsorship - All Candidates must be US Citizens

*THIS ROLE IS HYBRID IN NYC 2 DAYS/WEEK ON SITE

Description:

We are seeking a detail-oriented IT Security Analyst to join our team and play a crucial role in maintaining and enhancing our organization's cybersecurity posture. As a Security Analyst, you will be responsible for protecting our organization's computer systems and networks from security breaches and attacks. In this role, you will analyze vulnerabilities, monitor systems for suspicious activities, and develop security protocols to safeguard sensitive information. You will also assist in the execution of various security initiatives and collaborate closely with cross-functional teams to implement effective security measures.

Job Responsibilities (primary and secondary duties):

• Monitor and analyze security alerts and events to identify potential threats.

• Conduct vulnerability assessments and penetration testing to identify weaknesses.

• Implement security measures and best practices to protect data and systems.

• Collaborate with IT teams to ensure compliance with security policies and regulations.

• Respond to security incidents and conduct forensic investigations as needed.

• Working with the Incident Response team to escalate and respond to potential or real threats.

• Maintain up-to-date knowledge of the latest cybersecurity technologies, trends, and threat vectors to continuously improve the organization's security posture.

• Prepare and present reports on security status and incidents to management.

• Provide training and awareness programs for employees on security practices.

• Assist in the development and implementation of security policies and procedures.

• Collaborate with vendors and engineers to continuously tune and improve the quality of security platforms and services.

• Support various security platforms and rule management lifecycles including policy development, response rules, and maintenance.

• Regularly audit and analyze user activity logs, privileged activities, file access, and email activity.

• Recognize and respond to anomalous patterns of user and entity behavior.

• Analyze anomalous traffic in cloud environments, validate threats, and determine remediation steps.

• Continuously monitor networks for security breaches and other anomalous activities.

• Provide detailed records of security incidents, analyses, and mitigation actions taken.

• Maintain knowledge of common tactics, techniques, and procedures (TTPs) used by cyber adversaries.

• Ensure security monitoring tools such as EDR/MDR, DLP, Patch, and Scanning Agents are registered, monitored, and periodically audited.

• Review opportunities to optimize Information Security controls and processes through automation via scripts, tools, and other means.

• Supports IT Security and Cybersecurity Awareness campaigns.

• Advises on Windows and non-Windows systems patching as required by vulnerability management program.

• Supports 3rd party risk assessments on our vendors and partners.

• Supports external auditors and compliance teams to assure HIPAA, SOX, GDPR, PCI, NYDFS, and other regulatory compliance requirements are met including execution of remediation and improvement programs.

• Advises on security best practices for corporate solutions, application suites, and products.

Job Requirements:

Experience:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.

• Proven experience in an IT Security Operations, Risk Management, or a similar role.

• Knowledge of security frameworks (e.g., NIST, ISO 27001) and compliance standards (e.g., GDPR, HIPAA).

• Knowledge of the MITRE ATT&CK framework and basic concepts of threat hunting are a plus.

• Experience with security assessment tools and software.

• Strong analytical and problem-solving skills with the ability to think critically under pressure.

• Excellent communication and interpersonal skills.

• Highly organized, motivated, dedicated, and a team player.

• Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA CySA+, Security+) are a plus.

• Strong understanding of network protocols, firewalls, VPNs, IDS/IPS, and other security technologies.

• Strong understanding of Identity Management and Active Directory / Azure Active Directory including concepts such as MFA, SSO, role-based access control, and identity federation.

• Knowledge of authentication protocols such as SAML and OAuth.

• Proficiency with scripting languages and automation tools.

• Strong IT skills with a deep understanding of cyber security and hacker methodology.

• Experience in malware / software analysis, vulnerabilities, and incident response.

• Experience with the Microsoft Defender Security Suite including Microsoft Defender for Identity, Microsoft Defender for Office, Microsoft Defender for Endpoint, and Microsoft Defender for Cloud.

• Experience with cybersecurity tools such as CrowdStrike, Darktrace, Rapid7, SentinelOne, Qualys, or similar platforms.

• Strong organizational skills with the ability to effectively manage multiple, competing projects / priorities while achieving targeted completion results.

• Ability to stay up to date with the current cybersecurity regulatory landscape to account for changing circumstances and maintain technical proficiency via self or formal training.

• Ability to operate independently and as a part of the team to ensure our software, hardware, and related components are protected from cyber-attacks.

Skills:

Endpoint Security, NIST, Microsoft Defender, Troubleshooting, antivirus, Windows troubleshooting, SIEM, incident response, vulnerability management, patch management, system hardening, Azure, Customer service, powershell, python, Data Analysis, penetration test, crowdstrike, EntraID, active directory

Top Skills Details:

Endpoint Security,NIST,Microsoft Defender,Troubleshooting,antivirus,Windows troubleshooting,SIEM,incident response,vulnerability management,patch management,system hardening,Azure

Additional Skills & Qualifications:

Education & Certifications:

• 4-year degree, or equivalent experience.

Skills and Attributes:

• Proficient in Microsoft Office Suite (Word, Excel, Power Point, Outlook).

• Strong attention to detail.

• Excellent written and verbal communication skills.

Experience Level:

Intermediate Level

About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.