Junior Information Security Analyst

Responsibilities:

• Assist senior team members in conducting risk analysis and examinations of projects and vendors under close supervision.
• Support the team in performing GAP analyses between global and local information security policies by gathering data and documenting findings.
• Contribute to the development and maintenance of information security documentation (policies, procedures) by incorporating feedback and ensuring version control.
• Provide support for the implementation and configuration of security tools like SIEM (Wazuh) and WAF under the guidance of a senior engineer.
• Assist with vulnerability management processes by running scans, compiling initial reports, and tracking remediation efforts.
• Participate in the incident response process by performing initial triage, documenting events in tickets, and following established playbooks.
• Help monitor IT infrastructure security by reviewing alert dashboards and escalating issues to senior analysts.
• Support the maintenance of the information security risk register by updating records and generating basic heat maps.

• Education: Bachelor's degree in InfoSec, CS, IT, or related field. Equivalent certifications (e.g., CompTIA Security+) with demonstrated passion also accepted.
• Experience: 1+ year in an InfoSec role, or relevant experience via internships, labs, or personal projects.
• Knowledge: Foundational understanding of core security tech: antivirus, firewalls, and network attack principles.
• Skills: Strong technical writing ability and proficiency in English (Upper Intermediate level or higher).

Preferred Qualifications

• Familiarity with security frameworks (e.g., ISO 27001, NIST, PCI DSS, OWASP Top 10).
• Basic knowledge of risk management concepts and tools (e.g., SIEM, WAF, vulnerability scanners).
• Basic scripting skills (e.g., Python, Bash, PowerShell).
• Understanding of Secure Development Lifecycle (SDLC) principles.