Information Security Analyst

Overview

Kimley-Horn, one of Fortune Magazine's "100 Best Companies to Work For," is looking for an Information Security Analyst to join the Information Security team in our Dallas, TX office. As an Information Security Analyst, you will play a critical role in ensuring the security of our organization's technology infrastructure and assets. You will be responsible for overseeing, further developing, and sustaining Kimley-Horn's incident response program as well as its tooling.

This is not a remote position.

Responsibilities

• Identifying areas for improvement in security operations, processes, and procedures, and implementing necessary changes to enhance security effectiveness and efficiency

• Deploy and manage a privileged access management system

• Assist in the development, deployment, sustainment, and optimization of existing and new EDR technologies

• Implement, and document incident response processes, procedures, playbooks, and guidelines

• Automate security workflows, incident response processes, and threat intelligence integration

• Serve as the primary escalation point for the SOC in the event of an incident

• Manage security incidents, emergencies, or security breaches, including responding to critical incidents, conducting investigations, and preparing incident reports

• Conducting security risk assessments and developing security plans and procedures to mitigate identified risks and vulnerabilities

• Participate in tabletop exercises and simulations to test and improve incident response plans

• Prepare detailed incident reports, documenting the findings, actions taken, and lessons learned

Qualifications

• Bachelor's degree in information security, cybersecurity, or a related field

• 4+ years of experience in Information Security, Incident Response, or a similar role within an enterprise-level organization

• Professional IT certifications relating to IT Security such as Security+, GIAC Incident Handler, GIAC Security Essentials, Certified Information Systems Security Professional (CISSP), or other relevant security certifications.

• Experience managing a privilege accesses management system

• Experience with developing Incident Response playbooks

• Experience managing EDR tools

• Experience with security orchestration, automation, and response (SOAR)

• Experience with change-management policies and procedures

• Excellent problem-solving skills and the ability to think critically under pressure

• Strong communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholders

Desired Skills:

• Familiarity with incident response methodologies, tools, and frameworks

• Knowledge of Microsoft security tools as well as other EDR/XDR platforms

• Experience with automation and scripting

• Experience with IAM / Modern Authentication / Identity tooling is a plus

• Familiarity with query languages, advanced queries, and penetration testing tools

• Knowledge of the MITRE ATT&CK framework or NIST Cyber Security Framework (CSF)

Applicants must be legally authorized to work for Kimley-Horn in the U.S. without employer sponsorship. We do not typically sponsor H1-B or any other work visa petitions.

Responsibilities

• Identifying areas for improvement in security operations, processes, and procedures, and implementing necessary changes to enhance security effectiveness and efficiency

• Deploy and manage a privileged access management system

• Assist in the development, deployment, sustainment, and optimization of existing and new EDR technologies

• Implement, and document incident response processes, procedures, playbooks, and guidelines

• Automate security workflows, incident response processes, and threat intelligence integration

• Serve as the primary escalation point for the SOC in the event of an incident

• Manage security incidents, emergencies, or security breaches, including responding to critical incidents, conducting investigations, and preparing incident reports

• Conducting security risk assessments and developing security plans and procedures to mitigate identified risks and vulnerabilities

• Participate in tabletop exercises and simulations to test and improve incident response plans

• Prepare detailed incident reports, documenting the findings, actions taken, and lessons learned