Information Security Analyst

ASSYST is seeking an experienced Advanced Information Security Analyst to lead the technical implementation of enterprise cybersecurity initiatives, focusing on system hardening, network security, identity and access management (IAM), vulnerability management, and incident response within a Microsoft-based infrastructure. The ideal candidate will have strong expertise in cloud security, security monitoring, and enterprise security architecture, ensuring robust protection of organizational systems and data. This is an onsite contract role based in Tallahassee, Florida.

Key Responsibilities

Security Project Implementation

• Lead implementation of enterprise security initiatives including system hardening, encryption, vulnerability management, and network security
• Deploy security controls across Microsoft Azure and Microsoft enterprise environments
• Collaborate with infrastructure and development teams to implement secure architecture
• Deliver security projects aligned with timelines, scope, and compliance standards

Security Operations & Engineering

• Implement and maintain security technologies such as firewalls, IDS/IPS, encryption, and endpoint protection
• Perform vulnerability assessments and develop remediation strategies
• Strengthen the organization's overall cybersecurity posture

Security Monitoring & Tools Management

• Configure and manage enterprise security tools including:
• Security Information and Event Management (SIEM) platforms
• Microsoft Azure Security Center
• Endpoint detection and response solutions
• Ensure seamless integration of security platforms across IT systems
• Support threat detection and proactive monitoring

Incident Response

• Develop and maintain incident response procedures for law enforcement environments
• Investigate security incidents and conduct root cause analysis
• Implement remediation and risk mitigation strategies

Security Compliance & Governance

• Ensure compliance with:
• Criminal Justice Information Services (CJIS) Security Policy
• State and federal cybersecurity regulations
• Partner with Governance, Risk, and Compliance (GRC) teams to address audit findings
• Support CJIS audits and regulatory security assessments

Documentation & Training

• Maintain documentation for cybersecurity tools, processes, and controls
• Provide security awareness training to IT teams and stakeholders
• Support organization-wide cybersecurity best practices

Collaboration & Support

• Work with IT operations and development teams to embed security into systems and processes
• Provide technical troubleshooting and cybersecurity support
• Stay updated on emerging cybersecurity threats, technologies, and compliance requirements

Required Qualifications

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field (or equivalent experience)
• 5+ years of server or network administration experience
• 3+ years of enterprise information security administration experience (1000+ user environment)
• 2+ years of experience managing technical security implementations
• 3+ years of experience with Security Information and Event Management (SIEM) systems
• 3+ years of vulnerability management experience
• Experience supporting enterprise antivirus or endpoint protection platforms

Preferred Qualifications

• Experience with IDS/IPS security systems
• Experience implementing Microsoft Defender and Active Directory security controls
• Knowledge of Office 365 Data Loss Prevention (DLP)
• Experience working in criminal justice or law enforcement IT environments
• Familiarity with CJIS and state cybersecurity standards
• Experience creating executive security reports and briefings

*ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law*