Info Security Analyst Position Available In Montgomery, Alabama

Description & Requirements Join Our Team and Make a Difference! Are you looking for an impactful role where you finish the workday knowing you helped someone? Whether you are part of our care coordination team or playing a supporting role, the work our colleagues do every day enables us to collectively reach our mission of getting people the care they need when they need it. By staying committed to our core values of Think Big, Go Fast, Deliver Awe, and Win Together we can positively impact the lives of the injured workers we serve and get them back to the things that matter most in life.

Salary Range:

This compensation range considers a wide range of factors, including, but not limited to, skill set, experience and training, licensure and certifications, and other business and organizational needs. The disclosed range estimate is not adjusted for geographic differential associated with the location where the position may be filled. At One Call, it is not typical for an individual to be hired at or near the top of the range for their role, and compensation decisions are dependent on the facts and circumstances of each case. What We Provide in Return for Your Commitment to Our Mission We offer a vast array of benefits to help support the whole you, including:

Remote Work:

We are a remote-first company and almost all positions receive the flexibility of working from home.

Generous Time Off:

Besides 8 company holidays and 2 personal days every year, all colleagues receive a minimum of 18 days of paid time off.

Comprehensive Benefits Package:

Including medical, dental, vision, and pet insurance; 401(k) matching program; and company-paid life insurance and short and long-term disability coverage.

Supportive Services:

Just like our colleagues get injured workers the care they need when they need it, we want to do the same for our colleagues in their time of need. We offer a Colleague Assistance Program that provides free counseling and financial services, and our One Call Foundation, a non-profit arm of our company, provides colleagues financial assistance during times of unexpected hardships.

JOB SUMMARY

As an Information Security Analyst on our team, you can expect to be working in a fast-paced and constantly changing environment. Our team provides monitoring and detection capabilities using some of the latest security platforms to achieve that goal. Incident detection and response, analysis, investigation, threat hunting, and platform engineering are all components of our teams’ mission and goals. The Information Security Analyst position is a key contributor to our team’s success. Collaboration and teamwork are essential. Great communications skills and self-directed leadership are key traits. You should be comfortable with applying critical thinking and deductive reasoning as you work to contain incidents and drive down to the root causes.

ESSENTIAL DUTIES & RESPONSIBILITIES

Engineer, implement, and support platforms that support the Information Security mission. Work as part of a team to solve complex investigations and to perform timely incident analysis. Collaborate across business units to assist with incident response and to offer services that support our business goals as they pertain to Information Security. Be an investigator that works to understand the “who, why, what, when, and where” of problems, discovering the root causes and the resulting solutions. Work alongside technical IT teams in incident management scenarios acting in the role of key contributor to guide the team through the response process using defined plans and standard operating procedures. Use your diverse skills to help tune our security controls to achieve a high level of accuracy and/or prevention. Assist in determining the direction of current and future tactics and strategies for the Information Security team. Coordinate the efforts for analysis and investigation into internal events identified using User Entity Behavior Analytics (UEBA/UBA). Take these investigations and work across business units acting in a key consulting role helping them to correctly interpret the data so they can make informed decisions.

EDUCATIONAL AND EXPERIENCE REQUIREMENTS

Bachelor’s degree in computer science preferred or the equivalent combination of education, training or work experience. Preferred candidate maintains a security certification related to their engineering discipline including but not limited to: CompTIA Security+; SANS GISF, GSEC and/or GCIA; ISC2 – SCCP and/or CISSP; OSCP; and/or Azure/AWS certifications

ESSENTIAL KNOWLEDGE, SKILLS & ABILITIES

Communicating effectively to achieve alignment both within and external to the immediate team. Must be able to process various streams of data and pull this into a logical framework to perform analysis using both investigation theories and hypotheses to perform accurate analysis for incident-response decisions. Ability to utilize security tools to gather, analyze, triage, and escalate potential threat risks. Ability to manage multiple work streams and yet to stay focused on delivering the results needed to achieve planning goals. Ability to prioritize data of anomalous events collected by User Entity Behavior Analytics (UEBA/UBA), Data Loss Prevention (DLP), log ingestion technologies and other tools to classify trends or uncover abnormalities of potentially malicious activity. Demonstrated knowledge of procedures of malicious threat activity (i.e., insider threat, fraud, theft, sabotage, espionage, etc.) associated with behavioral analysis threat hunting. Performs independent technical assessments, ensuring the processes, procedures, and designs of the monitoring systems are effective, functional, and secure with the ability to deter, detect, and mitigate threats. A collaborator who works with cross-functional teams (i.e., legal, privacy, human resources, IT, physical security, and internal fraud functions) to perform independent verification and validation analysis. High degree of competency with threat detection, network security and traffic analysis, hunting for malicious activity and initiating response actions. Experience with scripting languages (i.e., Regex, Python, Ansible, JavaScript, and similar) to automate repetitive analysis tasks. Coordinate with stakeholders to tune and improve detection capabilities or to aid in investigations or respond to incidents. A clear understanding of the

MITRE ATT&CK

framework and how to apply this to incident monitoring, incident response, and threat hunting. Relevant certifications for this position are CompTIA Security+; SANS GISF, GSEC and/or GCIA; ISC2 – SCCP and/or CISSP; OSCP; and/or Azure/AWS certifications. A clear and concise communicator with the ability to document processes, produce lucid reports, evaluate, and write procedures, and draft incident playbooks. Evaluate current & emerging attacks, assess how a malicious actor might exploit those, and propose how to enable tools and platforms for Experience working with remote teams using remote collaboration tools. The use of Security Orchestration, Automation and Response platforms. 2+ years’ experience working in a Security Operations Center is a plus. Ability to work in an environment that aligns with the company’s diversity, equity, inclusion and belonging standards. Ability to work both independently and in a teamenvironment. Demonstrate our core values of Think Big, Go Fast, Deliver Awe, and Win Together.

PHYSICAL/MENTAL DEMANDS & WORK ENVIRONMENT

This position will be performed in the colleague’s home. Work-from-home requirements include the colleague’s ability to set up computer equipment within their home office. This job is primarily sedentary and may involve repetitive motions; thecolleaguemust be able to remain in a stationary position for extended periods of time, operate a computer and other office equipment, assess information and files stored electronically, and converse/exchange accurate information with others, simultaneously. The colleague must be ableto discern text displayed on a monitor, input data into specific fields using a keyboard, andadjustfocus to distances of up to three feet. The colleague must have the ability to learn new tasks, follow established processes, maintain focus, complete tasks independently, complete multiple tasks simultaneously, communicate professionally with colleagues and customers, and complete tasks in situations that have a speed or productivity requirement. The colleague must be able to manage moderate to significant mental stress as a result of, but not limited to, a dynamic and heavy workload. Please be advised that job descriptions typically change over time as business needs, job requirements, and employee skill levels change. As such, One Call retains the right to change or assign other duties to this position at any time. Information Security Analyst I Entry level professional role. Basic skills with moderate level of proficiency. Has general understanding of the principles of systems development life cycle. Generally performs single-function tasks that tend to be of small to moderate size and scope. Typically reviews and resolves tier I cases and exercises independent judgment and decisioning for matters of low to moderate complexity. Consults with senior peers to gain exposure to more advanced tasks and projects and to learn through experience. Typically requires 0 to 3 years of experience. Typically reports to an IT Security Manager We are an equal opportunity employer and all qualified applicants will receive consideration for employment regardless to race, color, religion, sex, nationality, disability status, protected veteran status, or any other status protected by law.