Job Description:

POSITION SUMMARY

The Senior Security Analyst will be responsible for developing, implementing, and maintaining comprehensive security strategies to protect our organization’s digital assets, networks, and systems from cyber threats.

REQUIRED QUALIFICATIONS

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field
• 5+ years of experience in cybersecurity, with at least 2 years in a senior or lead role
• Proven experience in security incident response and threat management
• Advanced knowledge of network security, endpoint protection, and cloud security principles
• Proficiency in security tools and technologies (SIEM, IDS/IPS, firewalls, vulnerability scanners)
• Certifications such as CISSP, CEH, or SANS GIAC strongly preferred

TECHNICAL SKILLS

• Proficient in security frameworks (NIST, ISO 27001, CIS Controls)
• Experience with cloud security (AWS, Azure, GCP)
• Scripting and automation skills (Python, Bash, PowerShell)
• Familiarity with threat intelligence platforms
• Understanding of compliance requirements (GDPR, HIPAA, PCI DSS)

SOFT SKILLS

• Excellent analytical and problem-solving abilities
• Strong communication skills, capable of explaining complex security concepts
• Ability to work collaboratively in a team environment
• Detail-oriented with high integrity
• Proactive approach to identifying and mitigating security risks
• Strong organizational skills with the ability to multitask in a fast-paced environment and manage multiple deadlines and priorities

PHYSICAL REQUIREMENTS

• Ability to work in a standard office environment
• Occasional overtime may be required during critical security incidents
• Full-time on-premise role at the Sugarland, TX office
  Minimum Years of Experience: 4-6 License Required: No Minimum Education: College Overview:
  IES is a national provider of industrial products and infrastructure services to a variety of end markets, including electrical, mechanical and communications contracting solutions for the commercial, industrial, residential and renewable energy markets. IES is publicly traded on NASDAQ under the symbol IESC. As of the end of IES’s 2024 fiscal year ending September 30, 2024, IES produced over $2.8 billion in revenue and employed over 9,400 employees at over 131 domestic locations across the United States. IES is an Equal Employment Opportunity Employer: Minorities, Females, Gender Identity, Sexual Orientation, Individuals with Disabilities, Protected Veterans Encouraged to Apply.
  From office buildings to wind farms, industrial complexes to housing developments, our employees and design professionals design, build, and maintain the systems that empower lives.

Our commitment to our employees is reflected by our actions:

• Safety is Priority One – and our record shows it
• Competitive Pay
• Company 401K plan with Employer Contribution Match
• Company Paid Time Off
• Company Paid Life Insurance
• Choice of Medical Coverage including Prescription and Short Term Disability Plans
• Choice of Dental and Vision Coverage
• Optional Long-term Disability, Critical Illness, Accident, Legal and Pet Coverage
• Auto and Home Insurance Discount Programs

EEO Statement:

• Conduct comprehensive security assessments and vulnerability analyses across network infrastructure, applications, and systems

• Develop and implement robust corporate wide IT security policies, procedures, and best practices. Monitor compliance with security policies and procedures defined.

• Monitor and analyze security logs, alerts, and incidents using advanced threat detection tools- Perform penetration testing and security compliance audits.

• Investigate and respond to security breaches, documenting findings and recommending mitigation strategies

• Collaborate with IT teams to ensure secure system configurations and timely patch management
• Create and maintain detailed security documentation and incident response plans
• Provide security awareness training to employees
• Develop action plans for any security gaps identified (against established policies or during security compliance audits) and monitor remediation of the action plans.
• Stay current with emerging cybersecurity threats, technologies, and industry best practices

Qualifications: