IT Security Analyst

About ACA:

ACA Group is the leading governance, risk, and compliance (GRC) advisor in financial services. We empower our clients to reimagine GRC and protect and grow their business. Our innovative approach integrates consulting, managed services, and our ComplianceAlpha® technology platform with the specialized expertise of former regulators and practitioners and our deep understanding of the global regulatory landscape.

Position Summary :

The IT Security Analyst is responsible for the daily reviews of logging and monitoring systems utilized by ACA Group (“ACA”). This position triages security events as they come in through automated alerts and other dashboards, resolving routine issues based on defined playbooks and escalating higher severity issues. This position needs to understand the IT vision and work towards realizing it. This position is responsible for finding ways to apply departmental new ideas into their daily work. This position needs a self-starter who works to improve their own effectiveness as well as provides ad-hoc suggestions for broader improvements for our IT Security systems, specifically as it relates to the effectiveness of monitoring and alerting. Execution of assigned tasks on time and on quality with oversight and assistance from others.

Job Duties:

1. Review security alerts in real time to triage and address or escalate.

2. Review and analyze security logs, reports, and dashboards to identify trends, vulnerabilities, and areas for improvement.

3. Analyze security events and incidents to identify potential threats or suspicious activities.

4. Investigate security incidents and anomalies, including conducting root cause analysis and recommending remediation actions.

5. Investigate staff-reported potential security incidents, including malicious machine activity and malicious emails or other impersonation events.

6. Participate in vulnerability scanning and assessment activities, including identifying and prioritizing vulnerabilities for remediation.

7. Assist in vulnerability remediation efforts, including research into remediation solutions.

8. Participate in Due Diligence Requests and other audit activities to collect and produce evidence.

9. Participate in Incident Response tabletop exercises.

10. Assist with the containment and/or mitigation of any discovered security incidents.

11. Assist with Identifying gaps, vulnerabilities, exploits, and patches in IT controls in order to generate issue lists and mitigation recommendations.

12. Assist with maintenance of IT Security Systems.

13. Assist with research of the latest security technologies.

14. Assist with conducting technical reviews of ACA’s IT systems and audit security controls.

15. Assist with the research, review, development, and/or enhancement of IT security systems.

16. Handle security related escalations from 1st/2nd line support staff.

17. Perform ad-hoc work/special projects as necessary to support ACA on various client and internal initiatives.

Preferred Education and Experience

1. Bachelor’s Degree in related field

2. 2-4yrs of practical experience in related information security role (e.g., SOC Analyst)

3. Relevant cybersecurity professional certification (e.g., Sec+ CySA+ GSEC SSCP)

Required Skills and Attributes

1. Demonstrated professional integrity

2. Dependable, flexible, and adaptable to new ACA initiatives and changing client needs

3. Ability to work well in a fast-paced, small-team environment

4. Ability to work independently, multi-task and prioritize effectively

5. Ability to establish and maintain effective working relationships with colleagues and clients

6. Highly motivated and goal oriented; proactive in one’s own education and career progression; volunteers for and shows initiative on both internal and external projects and tasks

7. Dedicated to upholding ACA’s high-quality standards and customer service focus

8. Strong organizational and problem-solving skills with attention to detail

9. Strong oral and written communication skill

What working at ACA offers:

We offer a competitive compensation package where you’ll be rewarded based on your performance and recognized for the value you bring to our business. Our Total Rewards package includes medical coverage fully funded by ACA for employees and their family as well as access to Maternity & Fertility and Wellness programs. ACA also provides Personal Accident Insurance, Group Term Life Insurance, Employee Discount programs and Employee Resource Groups. You’ll be granted time off for designated ACA Paid Holidays, Privilege Leave, Casual/Sick Leave, and other leaves of absence to support your physical, financial and emotional well-being.

What we commit to:

ACA is firmly committed to a policy of nondiscrimination, which applies to recruiting, hiring, placement, promotions, training, discipline, terminations, layoffs, transfers, leaves of absence, compensation and all other terms and conditions of employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected status.