The IT Security Analyst will play a critical role in safeguarding the organization's information systems by monitoring, analyzing, and responding to security incidents. The role requires working in a small to mid-sized company environment, where adaptability and hands-on experience are key. Key Responsibilities: Monitor and review security alerts and logs from various systems to detect and respond to potential security incidents. Conduct vulnerability assessments and risk analyses to identify potential threats to the organization's IT infrastructure. Assist in the development and implementation of security policies, procedures, and best practices. Investigate and document security breaches and incidents, providing detailed reports and recommendations for remediation. Support the implementation and management of security tools such as antivirus, firewalls, and intrusion detection/prevention systems (IDS/IPS). Provide security awareness training and guidance to employees, promoting a culture of security within the organization. Required Qualifications: Minimum of 4 years of experience in IT security analysis or a related role. Experience working in small to mid-sized companies, with a strong ability to adapt to various tasks and responsibilities. Solid understanding of security frameworks, such as NIST, ISO 27001, or CIS Controls. Hands-on experience with security tools and technologies, including SIEM, firewalls, IDS/IPS, and antivirus software. Strong analytical and problem-solving skills, with attention to detail in identifying and mitigating security risks. Familiarity with regulatory compliance requirements (e.g., GDPR, HIPAA, PCI-DSS). Excellent communication skills, with the ability to clearly convey complex security concepts to non-technical stakeholders. Preferred Qualifications: Bachelor's degree in Information Security, Computer Science, or a related field. Relevant certifications such as CompTIA Security+, CEH, CISSP, or similar. Experience with incident response and digital forensics. Knowledge of scripting or automation tools (e.g., Python, PowerShell) to streamline security processes.