About Board
We power financial and operational planning solutions for the world's best brands. Our technology is used by thousands of enterprises to optimize resources, drive growth, and ensure profitability.
Our Approach
We transform complex, real-time data into actionable intelligence using advanced analytics and forecasting, plus AI-driven insights.
Culture at Board
We value everyone's unique perspective and energy they bring to the organization. We collaborate openly across teams and borders. We embrace a growth mindset to get results.
IT Security Analyst Job Description
Job Summary
We are seeking a proactive and experienced IT Security Analyst to join our team in Board Chiasso. The successful candidate will be responsible for protecting our information system and data from cyber threats and attacks.
Responsibilities:
* Monitor security events and alerts generated by various security systems, including Microsoft Defender, Sophos Cloud (antivirus and endpoint detection and response (EDR) tools), BeyondTrust - PAM.
* Analyze security logs and data to identify suspicious activities, potential security incidents, and indicators of compromise.
* Investigate security incidents, breaches, and anomalies to determine the root cause and extent of the impact.
* Coordinate with incident response teams and stakeholders to contain, mitigate, and monitor compliance with security policies, standards, and regulatory requirements.
* Conduct periodic security assessments and audits to ensure adherence to security policies and guidelines.
* Remediate security incidents in a timely manner.
* Conduct vulnerability assessments and penetration tests to identify security weaknesses and gaps in the company's systems, applications, and networks.
* Prioritize and track remediation efforts, working closely with IT teams to address identified vulnerabilities.
* Stay abreast of the latest security threats, vulnerabilities, and attack techniques through threat intelligence sources, industry reports, and security forums.
* Analyze threat intelligence data to assess the relevance and potential impact on the company's security posture.
* Assist in the development and delivery of security awareness programs and training sessions for employees to promote security best practices and awareness.
* Provide guidance and support to end-users on security-related inquiries and incidents.
* Assist in the administration, configuration, and maintenance of security tools and systems including Microsoft Defender, Sophos Cloud (antivirus and endpoint detection and response (EDR) tools), BeyondTrust - PAM.
* Evaluate and recommend new security technologies, tools, and solutions to enhance the company's security posture.
Requirements:
* Bachelor's degree in Computer Science, Information Security, or related field.
* Minimum of 2 years of experience in cybersecurity or related roles, with a focus on security analysis and incident response.
* Relevant certifications such as Certified Information Systems Security Professional (CISSP), CompTIA Security+, or GIAC Security Essentials (GSEC) are preferred.
* Strong understanding of cybersecurity principles, best practices, and common attack vectors.
* Experience with security monitoring and incident response tools and techniques.
* Knowledge of networking protocols, operating systems, and common security technologies (e.g., firewalls, intrusion detection/prevention systems).
* Excellent analytical and problem-solving skills, with the ability to analyze complex security incidents and data.
* Strong communication and collaboration skills, with the ability to work effectively with cross-functional teams.
* Additional Requirements:
* Familiarity with cloud security concepts and technologies (e.g. Azure) is a plus.
* Experience with security automation and scripting languages (e.g., PowerShell) is advantageous.
* Knowledge of forensic analysis tools and techniques is desirable.
* Ability to work in a fast-paced environment and respond to security incidents promptly and effectively.