Sr IS Security Analyst | Remote

TTI, Inc. is looking for a Sr. IS Security Analyst at our Corporate office in Northwest Fort Worth, TX.

The IS Sr. Security Analyst will lead efforts to protect our information systems by identifying, analyzing, and mitigating threats to our digital assets. This role is crucial for maintaining and enhancing the security controls, policies, and procedures within our information security program. This role will manage complex security incidents and utilize advanced tools such as SIEM, EDR, Next-Generation Firewalls, DLP, and Email/Web Gateways to ensure robust protection against cyber threats.

Headquartered in Fort Worth, TX, TTI, Inc. is the world's leading authorized distributor of passive, connector, electromechanical, and discrete components. Celebrating more than 50 years, this Berkshire Hathaway company is ever-growing and has over 100 locations in North America, Europe, and Asia! Join a winning team in a growing global organization!

ACCOUNTABILITIES

• Assist in threat hunting and other initiatives as a part of SOC and CSIRT activities.

• Develop or implement open-source/third-party tools to assist in detection, prevention and analysis of security threats.

• Conduct and participate in alert review, tuning, and provide or implement recommendations.

• Researches and develops security solutions in IT networks and systems. Works with security vendors and solution providers to determine the tools and techniques required for those solutions.

• Identify Security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.

• Provide technical support in the development, testing, and operation of Next-Generation Firewalls, Email/Web gateways, EDR, SIEM and security related tools.

• Maintain and enhance existing developed scripts and automations.

• Find new improvements in the SOC processes and make updates to the SOP's in the knowledge base.

• Apply frameworks like MITRE ATT&CK and NIST CSF to everyday security risks. Provide recommendations for prioritization based upon existing controls.

• Lead for incident response, including steps to minimize the impact and conduct a technical investigation into the source of the breach to provide mitigation and preventative measures.

• Perform highly complex product evaluations, recommend, and implement products and services for security.

EDUCATION & EXPERIENCE

• High School Diploma or GED required, Bachelor's Degree in Computer Science or related degree preferred. Three plus years of information security in IT Infrastructure/Network/Security Operations environments, support, and testing required.

SKILLS & CERTIFICATIONS

• CISSP, GIAC GSEC, or equivalent certification preferred.

• Palo Alto firewall experience highly preferred.

• A desire to learn continuously, and a strong interest in cybersecurity best practices.

• Understands SIEM tools functionality to find attacks, tune out noise, and build security visibility into the environment.

• Experience supporting security software, to include Firewalls, Intrusion Prevention, DLP, Secure Web/Email Gateways, IAM/SSO, AV/EDR, and Vulnerability Scanners

• Proficiency in performing vulnerability assessments, and defining treatment strategies.

• A minimum of 2 years experience with creating automation scripts in a language such as Powershell, Python, Ruby, Perl, or VB, is required.

• Experience with common information security management frameworks, such as International Standards Organization (ISO) 2700x, National Institute of Standards and Technologies (NIST), Payment Card Industry Data Security Standards (PCI DSS) is preferred.

• Understanding of various cyber attacks and recent hacking techniques.

• Strong understanding of Operating Systems, Virtualization technologies, Network Devices, Cloud computing concepts, Web Proxies, Firewalls, Intrusion Detection/Prevention Systems, Antivirus Systems, Data Loss Prevention, Vulnerability Assessment tools.

• Ability to work weekends and after business hours.

PHYSICAL REQUIREMENTS

• Must have the ability to remain in a stationary position for extended periods of time.

• Must have the ability to position self to maintain computers and various network equipment in the buildings, including under desks, in the server rooms, and anywhere cabling installation and maintenance would be required for troubleshooting and optimal organizational connectivity and usage.

• Exhibit manual dexterity to dial a telephone, to enter data into a computer terminal; to perceive and read a computer screen and printed material with or without vision aids.

• Detect and understand speech at normal levels and on the telephone; converse in audible tones so that others may understand clearly in person and on the telephone; ability to understand and follow oral and written instructions.

• Physical ability to lift up to 25 pounds.

This position requires use of information or access to hardware, which is subject to the International Traffic in Arms Regulations (ITAR). To perform the position, you must be a U.S. Person as defined by ITAR. ITAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.

This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at anytime at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.