Information Security Analyst
Dallas, TX, United States
Overview
Kimley-Horn, one of Fortune Magazine’s “100 Best Companies to Work For,” is looking for an Information Security Analyst with cloud experience to join the Information Security team in our Dallas, TX office. As an Information Security Analyst, you will play a critical role in ensuring the security of our organization's technology infrastructure and assets. You will be responsible for ensuring the security of our cloud infrastructure and applications, as well as identifying and mitigating security risks.
This is not a remote position.
Responsibilities
Analyzing cloud infrastructure to understand and communicate risks, concerns, and outcomes of decisions
Reviewing, updating, and managing Web Application Firewalls
Implementing role-based access control (RBAC), conditional access policies and enforcing multi-factor authentication (MFA) for enhanced security.
Accountable for tracking application vulnerabilities through security tools and meeting with development teams to formulate remediation plans
Build automation to actively audit the infrastructure for security misconfigurations by using cloud-native policies/scripts
Design and implement secrets management solutions in cloud environments, including hands-on experience in building out systems utilizing tools such as AWS Secrets Manager or Azure Key Vault
Conduct thorough investigations of security incidents to determine the root cause and impact
Proactively identify potential security vulnerabilities and weaknesses in the system and recommend appropriate remediation actions
Participate in tabletop exercises and simulations to test and improve incident response plans
Prepare detailed incident reports, documenting the findings, actions taken, and lessons learned
Qualifications
Bachelor’s degree in information security, cybersecurity, or a related field
4+ years of experience with Cloud Security, Information Security, or a similar role within an enterprise-level organization
Professional IT certifications relating to IT Security or Cloud Security, such as Security+, Cloud+, GIAC Security Essentials, AZ-500, Certified Information Systems Security Professional (CISSP), or other relevant security certifications.
Solid understanding of incident response methodologies, tools, and frameworks
Experience with change-management policies and procedures
Excellent problem-solving skills and the ability to think critically under pressure
Strong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholders
Desired Skills:
Familiarity with cloud security concepts and best practices for securing cloud environments (AWS, Azure).
Knowledge of web standards relating to APIs (OAuth, SSL, CORS, JWT, etc.)
Experience with IAM / Modern Authentication / Identity tooling is a plus
Familiarity with query languages, advanced queries, and penetration testing tools
Knowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF)
Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.
Share this job with a friend (https://careers-kimley-horn.icims.com/jobs/12990/information-security-analyst/job?mode=apply&apply=yes&in_iframe=1&hashed=-1834442239)
Share on social media
PleaseCLICK HERE (https://www.kimley-horn.com/careers/benefits/at-a-glance/) to learn more about the potential Benefits you may be eligible to receive with this role.
If you require an accommodation, pleaseCLICK HERE. (https://www.kimley-horn.com/careers/ada-accommodation-request/)
Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
Posted Date 2 months ago (5/6/2024 11:19 AM)
ID 2024-12990
Education Bachelor's Degree
Discipline/Focus Software