Senior Information Security Analyst

Join our team as an Information Security Analyst, where you'll lead and support critical security initiatives that safeguard sensitive financial data, ensure regulatory compliance, and uphold the integrity of enterprise-level systems. This role is ideal for a security professional with a strong technical foundation and a passion for protecting digital assets in a financial environment.

Apply below after reading through all the details and supporting information regarding this job opportunity.

Position : Senior Information Security Analyst

Location : Hybrid Phoenix, AZ

Shift : 3 days in office

Duration : Direct Placement

Key Responsibilities

Lead the implementation and development of enterprise security solutions.

Evaluate and deploy technologies to mitigate risks and ensure compliance with financial regulations.

Support the vulnerability management program, including remediation coordination and reporting.

Monitor system logs, SIEM tools, and network traffic for suspicious activity.

Coordinate incident response efforts, perform forensic analysis, and recommend improvements.

Conduct security reviews of network architecture and assess risks.

Document firewall rules and escalate unresolved exposures or noncompliance.

Perform audits of endpoint, network, and system security controls.

Ensure alignment with financial regulations such as PCI-DSS, GLBA, and FFIEC.

Manage the Data Loss Prevention (DLP) program.

Generate reports and metrics to measure security effectiveness.

Collaborate with monitoring and response teams to identify emerging threats.

Mentor junior team members on security tools and best practices.

Required Qualifications

3–5 years of experience in Information Security, ideally at the enterprise level.

Bachelor’s degree in information security, Computer Science, or related field.

Experience in financial services or other regulated industries.

Strong understanding of compliance frameworks (PCI-DSS, GLBA, FFIEC).

Experience with :

• Vulnerability assessment tools
• Endpoint protection solutions
• Proxy servers
• SIEM systems
• DLP technologies
• Identity and Access Management (IAM) platforms
• Permissions and access control management

Preferred Certifications