Job Title: Security Analyst
Location: Denver, CO
Do you love technology and helping organizations utilize that technology to become greater than they thought possible? Are you interested in serving your community and doing your part to keep your community, nation, and planet safe? At Kaseware you will have the chance to do all of that and so much more as our Security Analyst. Kaseware is a company that is changing the world of law enforcement and corporate security forever and, if you are up for a challenge, we would like you to consider helping us make the world a safer place.
Position Summary
We are seeking a highly motivated and detail-oriented Security Analyst with a strong background in compliance frameworks such as NIST, SOC, and ISO. The ideal candidate will have experience with Unix and Windows operating systems and a deep understanding of security best practices. This role will be responsible for ensuring the security of our information systems by conducting risk assessments, monitoring security controls, and ensuring compliance with industry standards.
Job Type: Full-time, exempt
Responsibilities and Duties:
- Compliance Management:
- Implement and maintain security controls in compliance with NIST, SOC, ISO, and other relevant frameworks
- Conduct regular compliance audits and assessments to ensure adherence to regulatory requirements
- Develop and update security policies, procedures, and documentation to align with industry standards and best practices
- Security Monitoring and Incident Response:
- Monitor security alerts and events to identify potential threats and vulnerabilities
- Respond to security incidents, conduct root cause analysis, and implement corrective actions
- Perform regular vulnerability assessments and penetration testing on Unix and Windows systems
- Risk Assessment:
- Conduct risk assessments to identify and evaluate potential security risks to the organization's information systems
- Recommend and implement risk mitigation strategies to protect sensitive data and systems
- Collaborate with IT and other departments to address identified risks and ensure ongoing security
- Technical Expertise:
- Maintain and manage security tools and technologies, including firewalls, intrusion detection/prevention systems, and antivirus software
- Ensure secure configuration and hardening of Unix and Windows operating systems
- Stay up-to-date with the latest security threats, vulnerabilities, and mitigation techniques
- Training and Awareness:
- Develop and deliver security awareness training programs for employees
- Promote a culture of security awareness and compliance throughout the organization
- Provide guidance and support to staff on security best practices and compliance requirements
- Documentation and Reporting:
- Prepare detailed reports on security incidents, compliance audits, and risk assessments
- Maintain accurate and up-to-date documentation of security policies, procedures, and controls
- Report on security metrics and key performance indicators to senior management
Qualifications:
- Minimum of 3-5 years of experience in information security and compliance is preferred, but new or motivated individuals looking to start in security will be considered with relevant technology experience
- In-depth knowledge of NIST, SOC, ISO, and other relevant security frameworks
- Proficiency in Unix and Windows operating systems
- Experience with security monitoring tools and technologies
- Strong analytical and problem-solving skills
- Excellent written and verbal communication skills
- Relevant certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Auditor are a plus but not required. Relevant experience will be considered
Required Education and Experience:
- Bachelor's degree in Information Security, Computer Science, or a related field is preferred
Other Requirements:
Salary: $100,000-$120,000 per year
Benefits:
- Competitive salary and bonus program in an entrepreneurial environment
- Excellent health, dental, and vision insurance (70% company paid)
- Unlimited paid time off plan plus paid holidays
- 401k with company matching
About Kaseware:
Kaseware is a rapidly growing start-up located in the Denver metro area. We build state-of-the-art software for law enforcement and corporate security customers. We serve those that serve our communities and make our world safer.
Due to the nature of our business, you must be able to pass a full CJIS compliant fingerprint based background check, which is required for individuals needing access to criminal justice information (CJI).
U.S. Citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time.