Job Search Results for Information Security Analyst

Insight Global is seeking an IS Analyst to join the IT department of an AM 200 law firm. The Information Security Analyst plays a key role in protecting the firm?s digital assets, client data, and... More case-related information by implementing and maintaining security controls in alignment with the ISO 27001 Information Security Management System (ISMS). The analyst will proactively monitor, detect, and respond to security threats; ensure compliance with legal industry data protection standards; and support ongoing risk and compliance initiatives. This role is essential for maintaining client trust, ensuring the confidentiality of privileged information, and meeting both ethical and regulatory obligations in the legal sector.Essential Functions & Responsibilities:-Security Monitoring & Incident ResponseMonitor networks, systems, and endpoints for potential threats using SIEM, EDR, and IDS/IPS tools.-Analyze security alerts, investigate incidents, and coordinate timely response and remediation.Conduct root cause analyses and prepare post-incident reports.-Maintain and test the Incident Response Plan as part of ISO 27001 continuous improvement.Participate in legal hold or eDiscovery-related security reviews when required.-Risk Management & ISO 27001 AlignmentSupport the firm?s Information Security Management System (ISMS) and contribute to maintaining ISO 27001 certification.-Conduct periodic risk assessments, identifying potential threats to confidentiality, integrity, and availability of legal data.-Document and monitor risk treatment plans and corrective actions.-Participate in internal and external ISO audits by providing evidence and maintaining control documentation.-Contribute to the ongoing maintenance of the Firm?s risk register.-Seek out opportunities for continuous improvement in processes and procedures.-Vulnerability Management & Threat Intelligence-Perform regular vulnerability scans and coordinate remediation with IT and service providers.-Monitor industry-standard threat intelligence sources, cybersecurity forums, and dark web feeds for emerging risks, vulnerabilities, and threat actor activities targeting the legal sector.-Track and report vulnerabilities relevant to law firms, third-party vendors, and legal technology platforms (e.g., document management systems, case management tools).-Track and report on patch-management activity to be sure it aligns with required standards.Stay informed on evolving attack vectors such as business email compromise, ransomware, and data exfiltration threats impacting professional services firms.-Governance, Policy, and ComplianceDevelop, maintain, and enforce security policies, procedures, and standards in accordance with ISO 27001 Annex A controls and policy lifecycle.-Ensure adherence to data privacy laws (e.g., GDPR, CCPA) and client contractual obligations.Collaborate with legal teams to align information security practices with attorney?client privilege requirements and ethical obligations.-Support third-party vendor risk assessments and due diligence processes.-Security Awareness & Continuous Improvement-Support the firm?s security awareness training program and conduct periodic phishing simulations.-Educate staff on secure handling of confidential documents and client communications.-Contribute to the continuous improvement cycle of the ISMS by identifying opportunities for control enhancement.-Keep up to date with the latest developments in cybersecurity, privacy law, and ISO frameworks.-Access Control & Data ProtectionManage and review access controls, ensuring least privilege and role-based access models are enforced.-Monitor privileged accounts and perform periodic user access reviews.-Work with IT to secure document repositories, collaboration tools, and cloud-based applications.-Review and act as needed to on data loss prevention alerts from various tools.Technical Skills:Experience with ISO 27001, NIST CSF, or CIS Controls.Proficiency with SIEM platforms (e.g., Splunk, Sentinel, LogRhythm).Strong understanding of network protocols, IDS/IPS, and endpoint security.Familiarity with vulnerability management tools (e.g., Qualys, Nessus) and ticketing workflows.Knowledge of encryption, DLP, and secure file transfer solutions used in legal environments.Understanding of cloud security concepts (Microsoft 365, Azure, or AWS).Familiarity with scripting/automation tools and techniques.Knowledge of EDR/XDR solutions and providers.This is a full-time hybrid role, sitting 2 days in office each week in any of the firm's following offices: Baltimore, Boston, Chicago, Ft. Lauderdale, Harrisburg, Miami, Minneapolis, Newark, New York City, Philadelphia, Princeton, Wayne, PA, West Palm Beach, Wilmington, DE or Washington, D.C.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an experienced Information Systems Security professional to support a mission-critical government program. This role is responsible for overseeing the development,... More implementation, and evaluation of information system security policies and programs, conducting network and system security analysis in accordance with ICD 503, DCID 6/3, DITSCAP, DIACAP, JSIG, and NISPOM Chapter 8, and advising government program managers on certification, accreditation, and security testing methodologies. The analyst will perform risk assessments, evaluate threats and vulnerabilities, review certification documentation, and provide written accreditation recommendations to the designated approval authority. Responsibilities also include maintaining a formal Information Systems Security Program, coordinating security inspections and audits, managing certification and accreditation documentation, ensuring configuration management and system recovery processes are properly documented, and developing incident response procedures. The role ensures compliance throughout the system life cycle, oversees security training and awareness for AIS personnel, supports secure data handling and file transfers, and provides leadership, mentoring, and quality assurance to team members while coordinating complex technical security issues with the System Security Engineer.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

The Information Security Analyst plays a critical, hands-on role in protecting the confidentiality, integrity, and availability of company data and systems. This position is primarily technical and... More operational, with a strong focus on SOC alert monitoring, incident response, and vulnerability management, rather than audit or policy-heavy work.This analyst will work closely with internal IT teams, an outsourced SOC/MSP partner, and global security stakeholders to investigate security alerts, remediate vulnerabilities, and proactively reduce risk across the environment. By the end of the first three months, this individual is expected to independently manage and respond to security alerts.Primary Responsibilities (Hands-On / Technical)? Monitor and respond to SOC alerts generated by endpoint security, SIEM, and related tools.? Investigate alerts to determine validity and impact, using technical judgment to assess risk.? Take appropriate remediation actions such as isolating endpoints, reimaging machines, or escalating incidents when necessary.? Analyze alerts to differentiate false positives from real security threats.? Handle an average of 1?2 alerts per day, with the ability to pivot quickly during high-volume events (e.g., phishing campaigns that may consume a majority of the day).Secondary Responsibilities (Vulnerability Management & Risk)? Manage enterprise vulnerability scanning and remediation efforts using tools such as Qualys.? Partner with server and system owners to track, prioritize, and resolve identified vulnerabilities.? Review newly disclosed vulnerabilities, assess organizational exposure, and communicate risk and urgency to stakeholders.? Determine whether the organization is impacted by vulnerabilities actively being exploited in the wild.? Tie vulnerability findings to penetration test results when applicable.This is a fully remote opportunity with a preference for the candidate to be in Texas! Will work CST timezoneWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an Industrial Security Analyst to join our growing team at Nellis, AFB, NV. The Industrial Security Analyst 2 position will serve as the Front Desk Collateral Security... More Manager. The position requires an in-depth knowledge of Military Customs and Courtesies and all facets of the Security field, with a strong emphasis and understanding of Industrial and Physical Security, along with knowledge and expertise of Access Commander, Database Reconciliation, overall DISS/NBIS/NISS security actions, knowledge of generating DD254's to include; subcontractor DD254's, submission of Facility Clearance (FCL) sponsorship for subcontractor, as well as conducting semi-annual self-inspections to include physical security inspections.What You Will Do?Acts as the JITTC's front desk security and customer service representative.?Reviews and implements federal security regulations that apply to company operations.?Obtains rulings, approvals, interpretations, and acceptable deviations for compliance with regulations from government agencies.?Ensures that classified information entrusted to the company is properly safeguarded as outlined in federal controlling instructions.?Provides administrative security support associated with the receipt, distribution, inventory, reproduction, and disposition of classified?material.?Administers and maintains physical security procedures for visitor control, employee identification and safeguarding of company facilities,?equipment, materials, and employee property.?Develops and conducts security briefings and security education programs.?Provides oversight for programs for the protection of classified information and Controlled Unclassified Information (CUI) as well as propriety?information.?Prepares, sends, and receives visitor certifications when requested.?May investigate losses and employee security infractions/violations and prepares reports specifying preventive actions to be taken.?Assist in Personnel Security Actions such as managing the continuing eligibility program for employees.?Ensures accuracy of the Access Commander database.?Periodically inspect the facility to ensure physical security measures are being met and maintained.?Responsible for preparation and interfacing with the Defense Counterintelligence Security Agency (DCSA) during security audits.Compensation: $38/hr to $40/hr. Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages for this role will start day 1 of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is looking for a Cyber Security Analyst to join a growing cyber security function for a medium-to-large enterprise environment. This is a 6-month contract-to-hire opportunity,... More reporting into the Director of Cyber Security, supporting day-to-day security operations, incident response, and ongoing security improvements across a hybrid environment.This role is ideal for a hands-on, technically strong security professional with real SOC and tool experience (not theory-only) who thrives in investigation, problem-solving, and cross-team collaboration.The Cyber Security Analyst is responsible for supporting and operating existing enterprise security solutions, as well as identifying, investigating, and helping resolve security incidents detected by those systems. The role also contributes to security improvements, vulnerability management, audits, and the maturation of processes and tooling.This role works closely with infrastructure, IT, and business stakeholders, acting as a trusted security partner while helping the organization become more efficient and proactive."We may use artificial intelligence tools to assist with the screening, assessment, or selection of potential applicants for this position."We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Under general direction, the Information Security Analyst assists with the operations of the Agency's Information Security program for its technology assets. The Information Security Analyst's role... More is to support service owners and system owners in ensuring the confidentiality and integrity of information systems and data across the entire organization. The Information Security Analyst performs two core functions for the Agency. The first is the day-to-day operations of the in-place security solutions while the second is the identification, investigation and resolution of security events detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and/or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments. The IT Security Analyst is expected to be fully aware of the Agency's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goalsWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is looking for an Information Security Consultant to assist a large financial services enterprise in creating frameworks to help the TPRM team understand how to intake data, document... More data, risks, and escalations. They will need to report deficiencies found on any risk assessments returned from third party suppliers. These risks will then be reported in a dashboard in Power BI. There are approximately 20 different risk types that will need a process design framework to ensure consistency throughout the TPRM team.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking a Business Systems Data Analyst for a top clients. This analyst will support the Security organization by extracting and evaluating large vulnerability datasets to identify... More potential risks across the network. The ideal candidate excels in Excel-based analysis, understands vulnerability management workflows, and can partner closely with technical teams to ensure issues are resolved quickly. This role is fast-paced, analytical, and highly impactful within the organization?s security posture.?Pulling large vulnerability datasets from client's security scanning tools?Analyzing reports to identify vulnerabilities, inconsistencies, and anomalies?Determining whether anomalies represent real security issues?Flagging findings and collaborating with affected teams to drive fast remediation?Documenting findings, tracking remediation status, and supporting reporting activitiesWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an Analyst III, Security Business Advisory & Consulting to join a leading organization in a highly regulated, payments-focused environment. This role is responsible for... More embedding security, regulatory, and risk considerations early across new and existing initiatives. You will advise projects from design through delivery, supporting business and technology teams by leading threat and risk assessments and conducting security reviews that surface systemic risks and inform clear treatment and decisions. On a day-to-day basis, this role partners closely with project teams, engineers, architects, and business stakeholders to assess solutions, systems, and architectures while supporting transformation initiatives across the organization.A key part of the role involves translating cybersecurity policies, standards, and regulatory obligations into practical, actionable guidance. This individual will work across multi-cloud environments, help guide secure design and DevSecOps practices, and support the embedding of security controls into CI/CD pipelines. Their work enables faster delivery, reduced rework, and sustained compliance aligned with frameworks such as PCI DSS, the NIST Cybersecurity Framework, ISO/IEC 27001, and OWASP.This role requires someone who can operate independently in a fast-paced environment, manage multiple concurrent initiatives, and influence both technical and non-technical stakeholders. The position also includes mentoring junior Advisors and contributing to the ongoing maturity and effectiveness of the security advisory function.We may use artificial intelligence tools to assist with the screening, assessment, or selection of potential applicants for this position.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is seeking an Application Security Analyst to join one of our clients' security teams with focus on application security and vulnerability management. This resource will be doing lots... More of API testing to aid in a migration project for the first year of the role. The ideal candidate will have knowledge of standards and practices for securing applications and APIs. This role will participate in efforts to identify, verify, report, and track vulnerabilities within their systems and applications. This role spans multiple domains, including desktop, mobile, web applications, and API infrastructure.Key Responsibilities:- Schedule and perform regular application tests- Conduct penetration tests on important software and systems- Test changes before they go live- Analyze and validate vulnerabilities- Track and report testing activities- Present findings to stakeholders- Maintain dashboards for vulnerabilities- Improve asset management processes- Enhance threat modeling- Review source code and identify duplicates- Use security testing tools (e.g., Veracode, Burp Suite, Checkmarx, Postman)- Automate security scans and integrate with CI/CD pipelines- Collaborate with developers to improve security practices- Support incident response and investigationsPerform various security tests (penetration, purple team, red team)We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less