Network Analyst - Security and Compliance

Internal applicants must apply by 9/12 SUMMARY The Network Analyst - Security and Compliance will be primarily responsible for monitoring and analyzing security events within IMRF's IT environment. This role is crucial in identifying potential security threats and assisting in incident response efforts. The ideal candidate will have a foundational understanding of cybersecurity principles and a keen interest in developing their skills within a dynamic and fast-paced environment. ESSENTIAL DUTIES AND RESPONSIBILITIES • Monitor security alerts and events generated by various security tools (e.g., Palo Alto firewalls, LogRhythm SIEM, Fortinet FortiNAC). • Analyze security incidents to identify potential threats and vulnerabilities. • Assist in the investigation and response to security incidents, including malware analysis, intrusion detection, and threat hunting. • Participate in incident response activities, including triaging and escalating incidents as needed. • Document incidents, actions taken, and outcomes in accordance with the organization's incident response plan. • Stay current with the latest cybersecurity threats, vulnerabilities, and industry trends. • Assist in the evaluation, testing and deployment of patches to all IMRF systems on a monthly or “as needed” basis. • Assist in the development and maintenance of threat intelligence reports and indicators of compromise (IOCs). • Work closely with other SOC team members, IT staff, and external partners to address security issues. • Communicate effectively with stakeholders to provide updates on security incidents and remediation efforts. • Contribute to the enhancement of SOC processes, tools, and procedures. • Participate in regular training and development activities to improve cybersecurity knowledge and skills. • Assist the Help Desk in solving complex and common problems related to system security and network access and provide additional resource coverage as needed for special events. • Perform other duties as required. QUALIFICATIONS To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. EDUCATION and/or EXPERIENCE • Bachelor's degree in Cybersecurity, Information Security, or similar disciplineOR • Currently certified in GSOC OR CompTIA Security+ OR CompTIA CySA+ OR similar disciplineAND 1+ year experience working with enterprise security tools and technologies • Additional qualities/technical skills and experience preferred:o Knowledge of scripting languages (e.g., Python, PowerShell) for automation tasks. o Understanding of security frameworks and standards (e.g., NIST, ISO 27001). SALARY AND BENEFITS The expected annual salary range for this role is $69,560-$73,733. Please note the salary information is a general guideline only. Salaries are based upon candidate skills, experience, and qualifications, as well as market and business considerations. The range listed is just one component of IMRF's total compensation package for employees. Other factors include the following benefits: • Pension, death, and disability benefits as a member of IMRF • Generous insurance benefits, including medical and dental • 35-hour base work week, Monday-Friday. Ability to work one day remote, per week, after 6 months of hire. • Paid vacation, paid sick, 12-13 paid holidays and 2 personal days • Tuition reimbursement • Business casual attire