Principal Information Security Analyst

Job Description

Our client is seeking a seasoned and highly skilled Principal Information Security Analyst to join their robust security team in Colorado Springs, Colorado, US. This pivotal role involves safeguarding the organization's digital assets through the development, implementation, and management of comprehensive security programs. The ideal candidate will possess extensive experience in threat intelligence, incident response, vulnerability management, and security architecture. You will be responsible for leading complex security initiatives, conducting risk assessments, and developing strategic recommendations to enhance the overall security posture. Responsibilities include monitoring security systems, analyzing security events, investigating potential breaches, and coordinating incident response activities. You will also play a key role in developing and delivering security awareness training, ensuring compliance with relevant regulations, and staying ahead of emerging threats. The successful candidate will demonstrate exceptional analytical and problem-solving skills, a deep understanding of security frameworks (e.g., NIST, ISO 27001), and proficiency with various security tools and technologies. This position offers a hybrid work model, providing a blend of in-office collaboration and remote flexibility. We are looking for a proactive leader with a passion for cybersecurity and a commitment to protecting sensitive information. You will have the opportunity to shape security policies, mentor junior analysts, and contribute significantly to the company's security strategy.

Key Responsibilities

• Lead the development and execution of information security strategies and programs.
• Oversee threat intelligence gathering, analysis, and dissemination.
• Manage and coordinate incident response activities, including investigation, containment, eradication, and recovery.
• Conduct comprehensive vulnerability assessments and penetration tests.
• Develop and implement security policies, standards, and procedures.
• Monitor security infrastructure, analyze logs, and detect potential threats using SIEM and other tools.
• Ensure compliance with industry regulations and best practices (e.g., NIST, GDPR, PCI DSS).
• Provide security architecture reviews and recommendations for new systems and applications.
• Develop and deliver security awareness training to employees.
• Mentor and guide junior information security analysts.

Qualifications

• Education: Bachelor's degree in Computer Science, Cybersecurity, or a related field.
• Experience: 8+ years of experience in information security roles.
• Knowledge: Deep understanding of cybersecurity principles, frameworks, and technologies.
• Skills: Proven experience in incident response, threat hunting, and vulnerability management.
• Proficiency: Proficiency with security tools such as SIEM, IDS/IPS, EDR, and firewalls.
• Additional Skills: Experience with scripting languages (e.g., Python, PowerShell) for automation is a plus.
• Certifications: Relevant security certifications such as CISSP, CISM, or GIAC.
• Soft Skills: Excellent analytical, problem-solving, and communication skills.
• Work Environment: Ability to work effectively in a hybrid work environment.