Security Analyst - Heritage Christian Services

Hiring Event!!

Heritage Christian Services will be recruiting “live” on Monday, July 29th from 10am - 12pm at RochesterWorks! located on 255 North Goodman Street, Rochester NY 14607.

If interested, please make sure to come in and meet Heritage Christian Services recruiters in person for an opportunity to be pre-screened.



The Security Analyst will design, implement and maintain computer and information security systems. They monitor networks to detect any suspicious or hostile activities and take measures to defend against malicious attacks on our systems. To support the mission, vision and values of Heritage Christian Services.


  1. Monitor security access.
  2. Conduct security assessments through vulnerability testing and risk analysis.
  3. Perform both internal and external security audit testing to uncover network vulnerabilities.
  4. Analyze security breaches to identify the root cause and document incident.
  5. Continuously update the Agency’s incident response and disaster recovery plans.
  6. Verify the security of third-party vendors and collaborating with them to meet security requirements.
  7. Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
  8. Work with IT team to fix detected vulnerabilities to maintain a high-security standard.
  9. Develop Agency-wide best practices for IT security.
  10. Coordinate penetration testing and remediation.
  11. Help colleagues install security software and understand information security management.
  12. Research security enhancements and make recommendations to management.
  13. Stay up-to-date on information technology trends, security standards, and security trends.
  14. Other tasks as deemed necessary by supervisor.


  1. Bachelor's degree in computer science or related field.
  2. Experience in information security or related field.
  3. Experience with computer network penetration techniques.
  4. Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.
  5. Ability to identify and mitigate network vulnerabilities and explain how to avoid them.
  6. Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.
  7. Experience with NIST cybersecurity framework.