Information Security Analyst

"we are seeking someone with a background in IAM, but more specifically in coding and problem/design solutioning within an IT environment."Work Location: Harrisburg, PAWork Arrangement: HybridInterview Type: OnsiteResidency Requirements: Must be local to Harrisburg, PAVisas Accepted: GC and USC onlyPosition Overview:Our client is seeking an Information Security Analyst responsible for performing root cause analysis of security events and incidents, conducting risk assessments, and deploying security controls to protect sensitive data. This role supports enterprise security initiatives, system monitoring, audit compliance, and disaster recovery readiness.Key Responsibilities:Security OperationsPerform root cause analysis of security events and incidentsConduct risk analysis to identify vulnerabilities that could lead to lost or stolen dataDeploy and administer vendor and internally developed security tools and proceduresMonitor system availability, performance, and capacity metricsProvide audit support and collect evidence for internal and external reviewsAssist in maintaining and testing Disaster Recovery and Business Continuity PlansProject SupportProvide accurate effort estimates and timely status updatesSupport implementation of security enhancements and improvementsTesting and DocumentationPerform analysis, documentation, and testing of system enhancementsConduct unit testing to ensure specifications are met and no adverse system impacts occurMaintain technical and functional application documentationLeadership and GovernanceMentor junior staff on information security processesEnsure compliance with enterprise security and privacy policiesStay current on industry standards and best practicesSupport transformation initiatives aligned with strategic objectivesMinimum Qualifications:Bachelor's degree or equivalent experience2 to 5 years of experience in information securityAbility to coordinate escalation teams to resolve security issuesStrong analytical skills with the ability to assess complex informationHigh level of integrity and professional ethicsStrong written and verbal communication skillsProficiency in Microsoft Office SuiteStrong time management and organizational skillsTechnical Knowledge Required:Security principles and risk assessment standardsInformation security best practices and defense in depth strategiesNetwork technologies and security controlsExperience in several of the following areas:Access controlApplication developmentDatabase securityEncryptionNetwork securitySecurity frameworks such as NISTServer hardeningServer patching technologiesPreferred Qualifications:Current security related industry certificationsExperience with cloud computing and cloud native technologiesApplication development experience including scripting and automationExperience automating business processes