Information Security Analyst Resume Examples And Templates For Information Technology Careers

Michael Johnson

Information Security Analyst

[email protected] | (312) 555-6789 | Chicago, Illinois, USA

Profile

Experienced Information Security Analyst with 7+ years of expertise in protecting enterprise information systems by identifying vulnerabilities, managing risk, and implementing security policies. Proven ability to monitor and analyze security events, conduct compliance audits, and support incident response teams. Adept at leveraging industry best practices and frameworks such as NIST, ISO 27001, and CIS Controls to enhance organizational security posture.

Education

Bachelor of Science in Information Technology - Cybersecurity Focus
DePaul University, Chicago, IL
Graduated: June 2016

Licenses & Certifications

• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• CompTIA Security+
• Certified Cloud Security Professional (CCSP)

Work Experience

Information Security Analyst
Global Financial Corp, Chicago, IL
August 2018 – Present

• Monitor and analyze security incidents using SIEM platforms like Splunk and LogRhythm to identify threats and reduce false positives by 25%.
• Conduct risk assessments and vulnerability scans using tools such as Nessus and Qualys; coordinate remediation efforts with IT teams.
• Develop and maintain security policies, standards, and procedures ensuring compliance with SOX, PCI DSS, and GDPR regulations.
• Lead security awareness training programs, resulting in a 30% decrease in phishing susceptibility among employees.
• Support incident response and forensic investigations for data breaches and cyber threats, documenting findings and lessons learned.

Junior Information Security Analyst
TechSecure Solutions, Chicago, IL
July 2016 – July 2018

• Assisted in monitoring firewall and IDS/IPS alerts, escalating critical events to senior analysts.
• Performed routine compliance audits and vulnerability management tasks.
• Supported configuration of endpoint security solutions and multi-factor authentication deployments.
• Maintained documentation for security controls and incident response procedures.

Skills

• Security Monitoring & Incident Response
• Risk Assessment & Vulnerability Management
• Compliance & Regulatory Frameworks (PCI DSS, SOX, GDPR)
• Security Information and Event Management (SIEM)
• Network Security & Access Controls
• Cloud Security Best Practices (AWS, Azure)
• Penetration Testing & Threat Analysis
• Security Policy Development
• Forensic Analysis & Digital Evidence Handling
• Technical Documentation & Reporting

Achievements

• Implemented a vulnerability management program that reduced critical vulnerabilities by 40% within one year.
• Successfully led a company-wide phishing simulation campaign that improved employee detection rates by 35%.
• Contributed to passing annual PCI DSS audits with zero critical findings for three consecutive years.

Extra Curricular Activities

Active member of the Information Systems Audit and Control Association (ISACA) and local cybersecurity groups. Volunteer mentor for aspiring cybersecurity professionals and participate in cybersecurity Capture The Flag (CTF) competitions.

Courses

Completed advanced training in Cloud Security Architecture, Digital Forensics, Threat Intelligence, and Security Risk Management through platforms like Coursera, Pluralsight, and SANS.

Internships

Information Security Intern, SecureNet Inc., Chicago, IL – Summer 2015: Assisted with network security monitoring, vulnerability assessments, and helped develop security awareness materials.

Other References

Available upon request from previous supervisors and cybersecurity mentors.

Hobbies

Enjoy solving security puzzles, participating in hackathons, and reading about emerging cybersecurity threats. Outside work, I like hiking and photography.

Licenses & Certifications

• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• CompTIA Security+
• Certified Cloud Security Professional (CCSP)