Information Security Analyst

Let's be #BrilliantTogether

Overview

The role's primary focus is protecting the Firm's information security interests, leveraging advanced security tools and applications. As part of the Information Security Office (ISO), this role will work closely with technology functions to identify areas of improvement and supporting initiatives to promote information security within the organization.

Responsibilities

• Monitor security events and logs from a variety of systems and networks.
• Identify potential security incidents and threats.
• Perform analysis and investigations, correlating events and data to detect security incidents.
• Incident response and mitigation.
• Develop and document processes and procedures for responding to security incidents.
• Develop and maintain security incident response plans.
• Provide technical guidance, training, and support to other members of the security team.
• Maintain an up-to-date knowledge of security threats, vulnerabilities, and countermeasures.
• Audit and compliance support.

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, or a similar related field.
• 0-1 year of experience in IT security, network security, application security or a related field. Fresh Graduates are welcome to apply.
• Experience with security monitoring, incident response, and threat analysis.
• Knowledge of security best practices and standards.
• Knowledge of security techniques such as firewalls, intrusion detection systems, and anti-virus software.

Essential Skills

• Experience/Knowledge in one or more of the following security tools and technologies:

• Microsoft Sentinel

• Microsoft Defender
• CyberArk Privileged Access Management (PAM)
• Zscaler Cloud Security
• Tenable Vulnerability Management
• Physical Security
• Strong understanding of network concepts, protocols, and security devices like firewalls, routers, and switches.
• Knowledge of major operating systems (Windows, MacOS, Linux) and their security features.
• Familiarity with scripting languages (KQL, Python, Bash) for automating tasks and security analysis.
• Ability to analyze complex situations, identify anomalies, and connect the dots to understand potential threats.
• Proficiency in troubleshooting security issues, developing effective mitigation strategies, and implementing solutions.
• Proactive approach to searching for potential threats that may have bypassed existing security controls.
• Excellent verbal and written communication skills, with the ability to coordinate effectively with vendors and global teams. Proven and strong technical writing capability – candidates should be prepared to provide and/or discuss writing samples.
• Strong administrative capabilities in task development, time management, and resource allocation to meet target deadlines.
• Demonstrated troubleshooting, follow-through, and critical-thinking skills.
• High level of risk intelligence and security awareness.
• Relevant vendor and/or vendor neutral certification(s) such as Microsoft Security Operations Analyst (SC-200), Microsoft Cybersecurity Architect (SC-100), CyberArk Trustee / CyberArk Defender / CyberArk Sentry / CyberArk Guardian, Zscaler Digital Transformation Administrator (ZDTA) / Zscaler Digital Transformation Engineer (ZDTE), CASP+, ISC2 SSCP.

Work Shift and Arrangement

• Embrace a dynamic work environment to work on a shifting schedule (Morning, Evening, and Graveyard shift)
• Hybrid work set-up

What You Can Expect from Us

At ISS STOXX, our people are our driving force. We are committed to building a culture that values diverse skills, perspectives, and experiences. We hire the best talent in our industry and empower them with the resources, support, and opportunities to grow—professionally and personally.

Together, we foster an environment that fuels creativity, drives innovation, and shapes our future success.

Let's empower, collaborate, and inspire.

Let's be #BrilliantTogether.

About ISS STOXX

ISS STOXX GmbH is a leading provider of research and technology solutions for the financial market. Established in 1985, we offer top-notch benchmark and custom indices globally, helping clients identify investment opportunities and manage portfolio risks. Our services cover corporate governance, sustainability, cyber risk, and fund intelligence. Majority-owned by Deutsche Börse Group, ISS STOXX has over 3,400 professionals in 33 locations worldwide, serving around 6,400 clients, including institutional investors and companies focused on ESG, cyber, and governance risk. Clients trust our expertise to make informed decisions for their stakeholders' benefit.

Visit our website:

View additional open roles:

Institutional Shareholder Services ("ISS") is committed to fostering, cultivating, and preserving a culture of diversity and inclusion. It is our policy to prohibit discrimination or harassment against any applicant or employee on the basis of race, color, ethnicity, creed, religion, sex, age, height, weight, citizenship status, national origin, social origin, sexual orientation, gender identity or gender expression, pregnancy status, marital status, familial status, mental or physical disability, veteran status, military service or status, genetic information, or any other characteristic protected by law (referred to as "protected status"). All activities including, but not limited to, recruiting and hiring, recruitment advertising, promotions, performance appraisals, training, job assignments, compensation, demotions, transfers, terminations (including layoffs), benefits, and other terms, conditions, and privileges of employment, are and will be administered on a non-discriminatory basis, consistent with all applicable federal, state, and local requirements.