Herndon, VA, USA
5 days ago
Senior Information Security Analyst

Fortinet is seeking an experienced Senior Information Security Analyst for the FortiSASE service to support our compliance efforts around multiple frameworks, including ISO 27001, SOC2, IRAP, and ISMAP. The ideal candidate will have a strong background in implementing required controls, managing security programs, and leading by example. If you’re a seasoned professional who thrives in a fast-based, collaborative environment and can independently drive projects to completion, we want to hear from you!

As a Senior Information Security Analyst, your responsibilities will include:

Compliance Management: Support the organization’s compliance efforts with regulatory frameworks such as ISO 27001, SOC2, IRAP, IAMP, focusing on FortiSASE-specific requirements. FortiSASE Implementation: Design, implement, and maintain required controls to ensure the organization’s information assets are secure and compliant with FortiSASE policies and procedures. Security Program Management: Oversee the security program, including incident response, vulnerability management, and security awareness training, with a focus on FortiSASE security. Risk Management: Identify, assess, and mitigate security risks to the organization, working closely with stakeholders from other InfoSec teams to prioritize mitigation efforts and ensure alignment. Actively monitor and analyze security events, alerts, and logs using SIEM, SOAR, and related tools, investigating security incidents to mitigate potential risks. Develop and refine SOC processes, playbooks, alerts, reports, and dashboards to enhance threat detection and incident response capabilities. Analyze security logs to identify anomalies and violations, taking appropriate action based on established procedures. Provide guidance and support to system administrators, developers, and users on security controls, ensuring compliance with policies and effective control implementation.

We are looking for:

Experience:

Minimum of 5 years in Information Technology, Information Security, or a SOC/NOC role. Experience in ISO27001 and SOC2 compliance and audits. Prior experience in network or information systems administration is advantageous. We are seeking candidates with practical knowledge in implementation of security best practices. This is a hands-on role.

Technical Skills:

Solid understanding of the threat landscape, attacker motivations (phishing, malware, APTs, DoS attacks), nation-state actors and defensive strategies. Proficiency in at least one scripting language (e.g., Python, Bash). Knowledgeable in key security technologies: SIEM, SOAR, EDR, ID/IPS, access control, vulnerability management, cloud security, and External Attack Surface Management. Strong understanding of network protocols, DNS, and networking equipment (routers, VPNs, proxies, firewalls).

Soft Skills:

Exceptional written, verbal, and interpersonal communication skills, with strong attention to detail. Strong focus on continuous improvement and automation. Ability to engage effectively and collaborate across teams, demonstrating a customer-focused, approachable demeanor to support security awareness. Strong proficiency in verbal and written English.

Educational & Certification Requirements

Education: Bachelor's degree in Computer Science, Information Security, or equivalent practical experience. Certifications: Preferred certifications include one or more of the following: CISSP, CCSP, CISA, CISM, CRISC, CCNA, GIAC GCFE, GCFA, GCIH.

About Our Team:

Join our team, known for its collaborative ethos, working seamlessly with global customers, internal engineering teams and product development groups. Our team culture emphasizes continuous learning, innovation, and a strong commitment to customer satisfaction. We embrace Fortinet’s core values of openness, teamwork and innovation, fostering an environment where team members support each other, share knowledge, and leverage AI to solve complex technical challenges. Our inclusive and dynamic team thrives on collaboration and is driven by the shared goal of maintaining Fortinet’s high standards of excellence in cybersecurity solutions.

Why Join Us:

We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being.

Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

The US base salary range for this full-time position is $110,000-$141,000. Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time as well as a comprehensive leave program.

Wage ranges are based on various factors including the labor market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location.

All roles are eligible to participate in the Fortinet equity program, Bonus eligibility is reviewed at time of hire and annually at the Company’s discretion.

 

#GD

#LI-KL1

Confirm your E-mail: Send Email