Information Security Analyst

Talascend is currently seeking an Information Security Analyst for a contract opportunity with our client in Bellevue, Washington (State).

Overview

As an Information Security Analyst, you will help protect the organization’s digital assets, sensitive information, and personnel from an ever-evolving cybersecurity threat landscape. You will monitor security events, identify and respond to incidents and security help desk tickets, support end-user security training, and assess risks for new software requests.

Responsibilities

• Support the company’s incident response procedures to facilitate appropriate, timely, and consistent response activities, including containment, investigation, and recovery from security incidents and breaches.
• Triage and respond to security alerts from the Managed Detection & Response (MDR) service, as well as user-reported suspicious activity and email.
• Assist in developing and enforcing endpoint security policies for device hardening, removable media controls, and encryption standards.
• Collaborate with team members to document incident reports, including root cause analysis and recommendations for improvement.
• Support the development and delivery of security awareness training to meet compliance objectives and strengthen the organization’s security posture.
• Conduct routine internal phishing simulations, manage reported suspicious emails, and communicate emerging cybersecurity threats and trends to staff.
• Assist in developing and maintaining standard operating procedures for security-related policies, procedures, and standards, based on industry regulations and best practices.
• Assess new software and technology requests to identify potential security risks and provide actionable recommendations for mitigation.
• Support additional security-related processes and tools as assigned.

Qualifications

• Bachelor’s degree in Computer Science, Information Security, or related field, or equivalent work experience.
• 2-3 years of experience working in an Information Security focused role, preferably within an organization that has rigorous regulatory requirements and security standards.
• Hands-on experience working in a SOC or Security Incident Response team, with core responsibilities focused on security event monitoring and incident response.
• Strong critical-thinking and problem-solving skills, with the ability to identify, assess, and mitigate risks.
• Collaborative, accountable, and adaptable; able to work effectively in a team or independently.
• Excellent verbal and written communication skills, with the ability to translate technical risks to non-technical staff.
• A strong willingness to learn, adapt, and grow within the cybersecurity field.
• Ability to work with Systems Engineering to install, configure, and troubleshoot security applications.
• Relevant Security Certifications such as CompTIA Security +, CompTIA CySA+, (ISC)² SSCP, or GIAC Security Essentials (GSEC).
• Experience conducting and supporting security awareness training programs.
• Experience securing hybrid (Cloud & on-premises) environments with mixed Operating Systems.
• Experience supporting vulnerability remediation programs, including remediation tracking and coordination with system owners.
• Exposure to identity and access management (IAM) concepts or tools.
• Familiarity with a scripting language (e.g., PowerShell, Python) for task automation or log analysis.