Information Security Analyst

Averro Inc

Bellevue, WA

JOB DETAILS
SKILLS
Analysis Skills, Applications Security, Automation, Best Practices, Communication Skills, CompTIA - Computing Technology Industry Association, CompTIA Security+, Computer Science, Computer Security, Cryptography, Diversity, Email Management/Administration, Endpoint Security, Financial Trend Analysis, GIAC - Global Information Assurance Certification, GSEC - GIAC Security Essentials Certification, Help Desk, Hybrid Cloud, Identity Data Management, Incident Response, Information Assets, Information/Data Security (InfoSec), Internet Security, Operating Systems, Phishing, Presentation/Verbal Skills, Problem Solving Skills, Python Programming/Scripting Language, Regulations, Regulatory Requirements, Risk Analysis, Risk Management, Root Cause Analysis, SSCP - Systems Security Certified Practitioner, Scripting (Scripting Languages), Security Analysis, Security Attacks, Security Monitoring, Software Administration, Standard Operating Procedures (SOP), Standards Development, Systems Administration/Management, Systems Engineering, Team Player, Technical Training, Time Management, Training Program, Windows PowerShell, Writing Skills
LOCATION
Bellevue, WA
POSTED
7 days ago

Extension/Conversion: Eligible

Benefits: Medical, Dental, and Vision insurance, 401k, sick leave, and employee assistance program. Depending on your package selection, Averro offers PTO, paid holidays, and legal insurance.

ROLE & RESPONSIBILITIES

We are seeking an Information Security Analyst, you will play an important role in protecting the organizations digital assets, sensitive information, and personnel from the ever-evolving cybersecurity threat landscape. Your primary responsibilities will include leveraging a collection of tools to monitor security events, identify & respond to incidents and security help desk tickets, train end-users in security best practices, and assess risks for new software requests.

  • Support the company's Incident Response procedures to facilitate appropriate, timely, and consistent response activities, including containment, investigation, and recovery from security incidents and breaches.
  • Triage and respond to security alerts from our Managed Detection & Response (MDR) service, as well as user-reported of suspicious activity and email.
  • Assist in developing and enforcing endpoint security policies for device hardening, removable media controls, and encryption standards.
  • Collaborate with team members to document incident reports, including root cause analysis and recommendations for improvement.
  • Support the development and delivery of security awareness training to meet compliance objectives and strengthen the organization's security posture.
  • Conduct routine internal phishing simulations, manage reported suspicious emails, and communicate emerging cybersecurity threats and trends to TerraPower staff.
  • Assist in developing and maintaining standard operating procedures for security-related policies, procedures, and standards, based on industry regulations and best practices.
  • Assess new software and technology requests to identify potential security risks and provide actionable recommendations for mitigation.
  • Support additional security-related processes and tools as assigned.

ESSENTIAL QUALIFICATIONS

  • Bachelor's degree in Computer Science, Information Security, or related field or equivalent work experience.
  • 2-3 years of experience working in an Information Security focused role, preferably within an organization that has rigorous regulatory requirements and security standards.
  • Hands-on experience working in a SOC or Security Incident Response team, with core responsibilities focused on security event monitoring and incident response.
  • Strong critical-thinking and problem-solving skills, with the ability to identify, assess, and mitigate risks.
  • Collaborative, accountable, and adaptable; able to work effectively in a team or independently.
  • Excellent verbal and written communication skills, with the ability to translate technical risks to non-technical staff.
  • A strong willingness to learn, adapt, and grow within the cybersecurity field.
  • Ability to work with Systems Engineering to install, configure, and troubleshoot security applications.
  • Relevant Security Certifications such as CompTIA Security +, CompTIA CySA+, (ISC)² SSCP, or GIAC Security Essentials (GSEC).
  • Experience conducting and supporting security awareness training programs.
  • Experience securing hybrid (Cloud & on-premises) environments with mixed Operating Systems.
  • Experience supporting vulnerability remediation programs, including remediation tracking and coordination with system owners.
  • Exposure to identity and access management (IAM) concepts or tools.

BONUS QUALIFICATIONS

  • Familiarity with a scripting language (e.g., PowerShell, Python) for task automation or log analysis.

WHY AVERRO?

Averro is a veteran-owned staffing and solutions firm connecting top talent with cutting-edge companies. With 20+ years of experience and industry-specialized recruiters in your corner, were here to propel your career forward.

Averro is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

View our privacy policy here: https://www.averro.com/legal/privacy-policy

About the Company

A

Averro Inc