Team: Information Security
Position Overview:
Squarepoint is seeking an Information Security Analyst to join the Security Operations team. The Information security Analyst provides first line of support for security inquires, manages vulnerability assessments, assesses third-party vendors and software requests, and investigates and responds to security alerts. The ideal candidate has a strong technical foundation, problem-solving skills and a passion for cybersecurity.
1. Serve as the first point of contact for security-related questions and provide initial support.
2. Identify, track, and coordinate remediation of security vulnerabilities.
3. Assess third-party vendors and software for security risks before approval.
4. Investigate and respond to security alerts.
5. Collaborate with other security sub-teams on projects to enhance security capabilities, gaining exposure and growth opportunities.
Required Qualifications:
6. No prior work experience required, but a strong interest in information security and relevant technical skills are required.
7. Degree in Engineering, Computer Science, or STEM related field.
8. Strong analytical skills and attention to detail.
9. Effective communication skills to work with technical and non-technical teams.
10. Familiarity with common attacks techniques and emerging security trends.
11. Exposure to security frameworks and industry best practices (such as NIST CSF, CIS Critical Security Controls).
12. Awareness of common cryptographic principles and algorithms, including encryption, hashing, and key exchange methods.
13. Understanding of key network protocols, including DNS, HTTP, TLS, SSH, TCP, UDP, ARP, IP, and IPSec.
14. Understanding of stateful and stateless firewalls and how they control network traffic.
15. Basic scripting skills in languages like Python or PowerShell for automating security tasks and analysis.
Nice to have :
16. 1-2 years of exposure to security operations or a relevant IT role.
17. Experience with security tools such as EDR, SIEM, firewalls, and vulnerability scanning tools.
18. Knowledge of cloud security concepts and practices.
19. Solid understanding of Windows and Linux systems security.
20. Exposure to penetration testing techniques, tools, and methodologies.
21. Relevant security certifications (e.g., Security+, CEH, OSCP)