IT Consulting Services, Recruitment Services | Fremont | USA - Triune Infomatics

Technical Security Analyst

Job Type: Contract
Work Flexibility: Hybrid
Location: California
Required Skills: Risk Assessment security compliance security frameworks security incident response

Role: Technical Security Analyst
Location: Anywhere in CA
Duration: 6+ months
Pay Rate: $60 to $70

 

Manager’s Note:

  • Project Management Experience: At least 1 year required, ideally 2–3 years.
  • On-call/Overtime: Yes, occasional, but not on standby. If unavailable, the next analyst is contacted.
  • Certifications: Not mandatory. CISSP is preferred, but strong candidates without certifications will be considered.
  • Security Frameworks: ISO 27001 and NIST are mandatory. PCI DSS, HIPAA, and CIS Controls are nice to have.
  • Location Requirement: Candidates must be based in California and near Client’s office, as onsite visits to offices and ESEC Labs are required.

Key Skills for Security Analyst

  • Incident Response & Investigation
    Skilled in handling incidents through sandboxing, forensic analysis, and threat containment. Experienced in investigating suspicious files, alerts, and web activity to identify attack vectors.
  • Phishing & Threat Analysis
    Conducted phishing simulations, alert analysis, and BEC risk reduction initiatives. Applied threat intelligence to proactively mitigate risks and prevent advanced email-based attacks.
  • Enterprise Security Consulting
    Provided firewall recommendations, security best practices, and enterprise-level consulting. Supported vendor evaluations and proof-of-concept (POC) testing for security solutions.
  • Risk Management & Metrics
    Tracked and reported BEC metrics, incidents, and breaches to leadership. Assisted in risk communication with external stakeholders to promote industry best practices.
  • Collaboration & Training
    Partnered with cross-functional teams to strengthen security posture across the enterprise. Trained users and junior analysts on security awareness and incident handling procedures.
  • Continuous Learning & Development
    Pursuing penetration testing, computer science, and programming to expand technical expertise. Staying current with emerging threat intelligence to proactively address evolving risks.

Core Responsibilities:

  • Security Incident response
  • Security Compliance – NIST, PCI, Security standards and controls
  • Understanding Security Request and recommend security controls
  • Mitigate controls and advice to team
  • Ability to look at risk when a request comes and do an assessment.
  • Ability to evaluate very complex issues
  • They will be training technical and non-technical staff
  • CISA and/or CISSP Certifications required

Technical Knowledge and Skills:

  • Minimum of 5+ years of technical experience conducting security incident response.
  • Working experience in threats in current environment and apply information to prevent future vulnerabilities in infrastructure.
  • Working experience using best practices standards and frameworks: ISO 27001/27002, PCI :DSS V3; GLBA; HIPPA/HITECH; NIST 800-53; CIS CONTROLS, NIST CSF, CIS RAM
  • Security concepts such as Encryption, Hardening, etc.
  • Governance Risk & Compliance (GRC)
  • Vulnerability assessments
  • Penetration testing

Apply for this position

Allowed Type(s): .pdf, .doc, .docx