P

AVP Senior Information Security Analyst

PGM Tek
Full-time
On-site
New York, New York, United States
Cybersecurity

Summary:

This is a full-time position for a Senior Information Security Analyst (“Security Analyst”) within the

Information Security team that participates in all aspects of information security.

The Security Analyst shall act as a risk manager with the responsibility for identifying, acting on and

escalating risks and is held strictly accountable for the failure to discharge their information security

duties. The employee shall also be responsible for demonstrating risk awareness by following all security

policies, procedures and internal controls in the daily routine.

Ability to make decisions and influence decisions in the areas of risk management and compliance are

key to the role. The Security Analyst will ensure that policy and compliance documentation, requirements

and controls are properly and timely identified, mapped, tracked, reviewed, and reported for the

organization to increase security posture.

In this role he will work closely with other members of the Security Team and IT Infrastructure Teams to

manage and support security administration tasks and security projects.



Requirements

Responsibilities:

SOC Operations (to include SIEM, SOAR, EDR, Threat Intelligence)- Perform initial triage of security

alerts and escalate real alerts; make recommendations to refine SIEM correlation rules and gather

intelligence from open source and vendor threat sources.

Root Cause Investigations & Incident Response Playbooks- Includes maintaining and updating the

IR Handbook using lessons learned from past incidents and assisting with documenting root cause

reports and tracking post-incident action items.

Log Collection & Forensic Analysis- Verify log capture across critical security tools and maintain

logging infrastructure dashboard and alert on missing logs.

Security Architecture Strategies- Maintain inventory of security tools and document security control

coverage across the environment.

DLP & Insider Threat Monitoring- Monitor DLP alert queues and escalate violations to management;

assist in analyzing data movement patterns for potential insider threats.

Penetration Testing & Tabletop Exercises- Document results from pen tests and track remediation

progress; coordinate logistics for tabletop exercises (scheduling, note-taking).

Vulnerability Management & Patching SLAs- Track patching compliance and generate weekly

reports; assist in validating vulnerability remediation efforts.

Attack Surface Monitoring & Threat Modeling- Monitor the asset inventory for continuous updates

and assist in threat modeling sessions by documenting identified risks.Baseline Configuration Compliance- Track deviations from approved baselines and escalate

compliance violations; maintain a database of baseline configurations for quick reference.

Asset Management for Security Tools, Hardware, Software- Maintain asset tracking logs for

security tools and their deployment status; assist in decommissioning outdated security software.

Audit Support / Remediation Efforts- support internal audit activities, assess current cybersecurity

controls in place, and drive remediation efforts for identified findings.

Risk Reporting- identifying, tracking, analyzing, and reporting key risk indicators (KRIs). Help provide

actionable insights to enhance our cybersecurity risk management and informed decision-making.

Education and Experience Requirements:

At least 3 years managing information security governance, risk, and compliance.

Bachelor’s degree in information technology or security discipline (e.g. cybersecurity) or related

work experience.

Industry recognized security certifications are a plus but not required (e.g. CISSP, CISA, CISM, CEH,

etc.)

Skills and Knowledge:

Demonstrated knowledge of industry authoritative sources such as NIST Cybersecurity

Framework, SOC2 and ISO standards, FFIEC framework and NYDFS-Part 500 regulations.

Experience with Splunk Cloud, Qualys, Spirion, Trellix, PAM, Tufin or similar information security tool is

preferred.

Excellent written and verbal communication and presentation skills; Good command of spoken and

written English.

Interpersonal and collaborative skills; and the ability to communicate information risk-related

concepts to technical as well as nontechnical audiences.

Skilled at planning, tracking plans, working cross department to review risks, controls and processes,

and gathering and organizing documentation and test results.

Self-directed, works with minimal guidance, and recognizes when guidance needed Ability to cope

with pressure and responsibility.

This job description is not limited to the responsibilities listed and the incumbent may be requested to perform

other relevant duties as required by business needs.