TTI, Inc.
Overview
Fort Worth, TX – TTI, Inc. is looking for an IS Security Analyst II to join our Corporate location. The role focuses on maintaining and enhancing operational activities related to security controls, policies, and processes within the information security program.
Responsibilities
Perform threat hunting and other initiatives as part of SOC and CSIRT activities.
Technical lead for incident response, minimizing impact and conducting investigations.
Collaborate with cyber defenders on malicious intrusions, attacks, or suspicious activities and share emerging threat intel.
Develop or implement open‑source/third‑party tools to assist in detection, prevention, and analysis of security threats.
Research and develop security solutions in IT networks and systems, working with vendors to determine required tools and techniques.
Identify security risks, threats, and vulnerabilities of networks, systems, applications, and new technology initiatives.
Assist with risk assessments and analyze technical controls for risk treatment options.
Provide technical support in the development, testing, and operation of firewall policies, intrusion prevention systems, secure web/email gateways, EDR/XDR, SIEM, and related tools.
Find new improvements in SOC processes and update SOPs in the knowledge base.
Apply frameworks like D3FEND, ATT&CK, and NIST CSF to everyday security risks and provide recommendations for prioritization.
Perform highly complex product evaluations, recommend, and implement products and services for security.
Education and Experience Requirements
Bachelor’s Degree in Computer Science or related discipline (High School Diploma or GED required).
Three to five years of information security experience in IT infrastructure/network/security operations environments, support, and testing.
Preferred Qualifications
CISSP, GIAC GSEC, or equivalent certification preferred.
A strong desire to learn continuously and a strong interest in cybersecurity best practices.
Understanding of SIEM tools to find attacks, tune noise, and build security visibility.
Experience supporting security software, including firewalls, intrusion prevention, DLP, secure web/email gateways, IAM/SSO, AV/EDR, and vulnerability scanners.
Proficiency in performing vulnerability assessments and defining treatment strategies.
Experience with ISO 2700x, NIST, and PCI DSS frameworks is preferred.
Understanding of recent hacking techniques and various cyber attacks.
Strong understanding of operating systems, virtualization technologies, network devices, cloud computing concepts, web proxies, firewalls, intrusion detection/prevention systems, antivirus systems, data loss prevention, and vulnerability assessment tools.
Ability to work weekends and after business hours when needed.
Physical Requirements
Remain in a stationary position for extended periods.
Position self to maintain computers and network equipment in buildings, including server rooms and cabling installation areas.
Manual dexterity to dial telephone, enter data into computer terminal, and read printed material.
Detect and understand speech at normal levels and converse in audible tones.
Physical ability to lift up to 25 pounds.
Benefits
Medical/Dental/Vision, 401(k)/Roth plan with matching, and Health Savings Accounts.
Tuition reimbursement.
Ongoing training and professional development opportunities.
Community philanthropy focus.
Equal Opportunity Statement We are an Equal Opportunity Employer, and we support protected veterans and individuals with disabilities through our affirmative action program.
Additional Notes No relocation assistance; candidates must be local or willing to relocate at their own expense. Visa sponsorship is not available. The position requires U.S. Person ITAR compliance.
#J-18808-Ljbffr
Responsibilities
Perform threat hunting and other initiatives as part of SOC and CSIRT activities.
Technical lead for incident response, minimizing impact and conducting investigations.
Collaborate with cyber defenders on malicious intrusions, attacks, or suspicious activities and share emerging threat intel.
Develop or implement open‑source/third‑party tools to assist in detection, prevention, and analysis of security threats.
Research and develop security solutions in IT networks and systems, working with vendors to determine required tools and techniques.
Identify security risks, threats, and vulnerabilities of networks, systems, applications, and new technology initiatives.
Assist with risk assessments and analyze technical controls for risk treatment options.
Provide technical support in the development, testing, and operation of firewall policies, intrusion prevention systems, secure web/email gateways, EDR/XDR, SIEM, and related tools.
Find new improvements in SOC processes and update SOPs in the knowledge base.
Apply frameworks like D3FEND, ATT&CK, and NIST CSF to everyday security risks and provide recommendations for prioritization.
Perform highly complex product evaluations, recommend, and implement products and services for security.
Education and Experience Requirements
Bachelor’s Degree in Computer Science or related discipline (High School Diploma or GED required).
Three to five years of information security experience in IT infrastructure/network/security operations environments, support, and testing.
Preferred Qualifications
CISSP, GIAC GSEC, or equivalent certification preferred.
A strong desire to learn continuously and a strong interest in cybersecurity best practices.
Understanding of SIEM tools to find attacks, tune noise, and build security visibility.
Experience supporting security software, including firewalls, intrusion prevention, DLP, secure web/email gateways, IAM/SSO, AV/EDR, and vulnerability scanners.
Proficiency in performing vulnerability assessments and defining treatment strategies.
Experience with ISO 2700x, NIST, and PCI DSS frameworks is preferred.
Understanding of recent hacking techniques and various cyber attacks.
Strong understanding of operating systems, virtualization technologies, network devices, cloud computing concepts, web proxies, firewalls, intrusion detection/prevention systems, antivirus systems, data loss prevention, and vulnerability assessment tools.
Ability to work weekends and after business hours when needed.
Physical Requirements
Remain in a stationary position for extended periods.
Position self to maintain computers and network equipment in buildings, including server rooms and cabling installation areas.
Manual dexterity to dial telephone, enter data into computer terminal, and read printed material.
Detect and understand speech at normal levels and converse in audible tones.
Physical ability to lift up to 25 pounds.
Benefits
Medical/Dental/Vision, 401(k)/Roth plan with matching, and Health Savings Accounts.
Tuition reimbursement.
Ongoing training and professional development opportunities.
Community philanthropy focus.
Equal Opportunity Statement We are an Equal Opportunity Employer, and we support protected veterans and individuals with disabilities through our affirmative action program.
Additional Notes No relocation assistance; candidates must be local or willing to relocate at their own expense. Visa sponsorship is not available. The position requires U.S. Person ITAR compliance.
#J-18808-Ljbffr