Job description

The Security Systems Analyst supports the protection and integrity of the organization's information systems by monitoring, analyzing, and responding to security threats and vulnerabilities. This role works closely with IT and cybersecurity teams to enforce security policies, ensure compliance, and maintain secure system configurations, helping to safeguard company data and infrastructure from internal and external risks. Location: Dallas/Addison, TX Pay Rate: Up to $90k depending on experience Duration: Fulltime/Direct hire CORE RESPONSIBILITIES: Assessments & Remediation: Identify and assess vulnerabilities across infrastructure and application domains, and work with IT teams to mitigate risk in a timely manner. • Perform regular scans using architecture exposure software. • Analyze scan results, prioritize based on risk/severity scores. • Track remediation progress and document risk acceptance when needed. • Perform and document software and vendor security assessments. Security Policies and Compliance Standards: Ensure adherence to internal security policies and external regulatory frameworks, and support audits/compliance documentation. • Maintain and update internal security controls and procedures • Assist with policy enforcement and user education. • Participate in audits and prepare compliance evidence. Monitor and Respond: Continuously monitor security systems (SIEM, Proofpoint, endpoint tools) for anomalies, alerts, and incidents to investigate suspicious activity, analyze logs, and coordinate incident response actions. • Triage security alerts from our clients security monitoring software. • Escalate and document incidents using ITSM platforms. • Collaborate with defined SOC and/or emergency teams during escalated threats. Security Documentation: Create and update technical and procedural documentation related to security operations, and support the development of incident response plans, runbooks, and end-user guides. • Write post-incident reports and root cause analyses. • Maintain runbooks for threat scenarios and escalation procedures. • Update security awareness materials and SOP's. Identity & Access Control: • Audit Active Directory (and other critical systems) groups, roles, and permissions. • Configure identity federations and MFA policies. • Assist with access reviews and privilege escalation incidents. Stakeholder Management: • Build and maintain strong relationships with business leaders, project managers, and other key stakeholders. • Facilitate effective communication and collaboration across departments and teams. • Manage stakeholder expectations and ensure their needs and concerns are addressed. Required Skills / Qualifications: • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. • Preferred: • Relevant technical associate degree with 1-2 years of hands-on security experience. • Equivalent military or technical training in cyber security. • 2–4 years of direct experience working in a security operations, systems analysis, or vulnerability management role. • Experience using SIEM tools, endpoint protection, and vulnerability scanning platforms. • Foundational knowledge of cybersecurity principles, including the CIA triad, encryption, authentication, malware types, and access control. • Basic understanding of network protocols and infrastructure (TCP/IP, DNS, DHCP, firewalls, routers, etc.). • Familiarity with Windows and Linux operating systems, including basic system administration and security configurations. • Exposure to security tools and platforms such as: • SIEM (e.g., Splunk, QRadar) • Vulnerability scanners (e.g., Nessus, Qualys) • Endpoint protection tools (e.g., Microsoft Defender, CrowdStrike) • ITSM/ticketing platforms (e.g., SysAid, ServiceNow) • Introductory skills in log analysis and identifying system anomalies or suspicious behaviors. • Strong analytical and problem-solving abilities; capable of identifying patterns, troubleshooting issues, and assessing risk. Preferred Skills / Qualifications: Certifications (Not Required, but Preferred): • CompTIA Security+ – foundational cybersecurity knowledge. • CompTIA CySA+ – for those with security operations experience. • Cisco CyberOps Associate – useful for SOC and monitoring roles. • Microsoft SC-900 – for cloud security fundamentals. Aleron companies (Acara Solutions, Aleron Shared Resources, Broadleaf Results, Lume Strategies, TalentRise, Viaduct) are an Equal Opportunity Employer. Race/Color/Gender/Religion/National Origin/Disability/Veteran. Applicants for this position must be legally authorized to work in the United States. This position does not meet the employment requirements for individuals with F-1 OPT STEM work authorization status.

Requirements