The
Analyst IT Senior - IT Security will
be working on a team responsible for
developing a comprehensive approach to
IT security by monitoring and execution
of Company's Information Security
technical efforts; and the analysis of
network and system security as well as
the detection and response to security
incidents using security best practices.
He/She will be working
closely
with IT infrastructure and applications
teams to ensure that processes and
solutions meet or exceed security and
certification requirements. The
Analyst IT Senior - IT Security will be
responsible for
planning
and providing input into the engineering
and operational processes, related to
security: Developing and maintaining
detailed security plans; Conducting
security and vulnerability assessments
of Company applications and systems;
Develop security-related development
processes including coding standards,
technical documentation standards, QA
processes, build, and configuration
management.
Job
Description:
The
Analyst IT Senior - IT Security will perform
all or some of the following Job
description:
Perform advanced security
information and event monitoring;
compile and validate statistical
data from logging tools in a timely
manner; fuse threat and
vulnerability information with data
collected across the enterprise
Correlate, analyze, and escalate
information security related events
and alarms using security event
management tools and following best
practices
Support the daily coordination and
remediation of incidents with senior
management, peer security analysts,
and various stakeholders
Prepare and deliver incident and
root cause analysis reports and
summaries with a high level of
technical accuracy; explain
technical concepts to non-technical
audience
Remain current with security
incident response trends such as:
vulnerabilities, exploits, and their
countermeasures; incident response
processes and tools
Conduct vulnerability and
penetration testing
Monitor intrusion detection and
prevention systems
Conduct initial forensic analysis of
security incidents
Perform security audits of current
infrastructure and applications
Monitoring security bulletins,
determining applicability and
coordinating action and
communication plans
Design, build, and maintain custom
network and system sensors for
traffic analysis
Assist other teams in resolving
issues, monitoring the network and
systems, and provide technical
support for litigation and internal
investigations
Participate in project teams to
direct and plan for the transition
of security technology initiatives
into a Company operational function
Establish and report on the
appropriate IT service metrics for
Company Security Monitoring and
Management. Develop and maintain
Service and Operating Level
agreements and metrics/reporting for
quality and performance
Participate in the development of
operating and capital expenditure
forecasting for the purpose of
assisting management to create
budget plans
Maintain liaison with professional
organizations to ensure utilization
of current principles, techniques
and policies
Maintain documentation and
procedures to ensure adherence to
institutional, state and federal
policies and regulations
Participate in an on-call rotation
that provides 24x7x365 coverage of
mission critical functions if
required
Perform other related duties
incidental to the work described
herein.
Minimum Requirements / Knowledge / Skill
For Analyst IT Senior - IT Security Job
18 -
36 months experience in information
systems security including
firewalls, intrusion detection, net
flow analysis, common host logs,
vulnerability scanning, security
event correlation, and incident
response practices
Understanding of common practices
related to information security,
data protection, and privacy
Familiarity of routine
security-related incident response
procedures, including NIST SP 800-61
Well
versed in multiple areas of
information technology such as:TCP/IP
(UDP, TCP, and ICMP); DHCP;
Operation of Routers, hubs, and
switches; Windows, AIX and Linux
operating systems; Malware, Ad-Ware,
and Spyware; and Viruses / Trojans /
IRC Bots
Good
understanding and knowledge of
security concepts, protocols,
processes, architectures, and tools
(authentication and access control
technologies, intrusion detection,
network traffic analysis, SIM
technology, incident handling,
media/malware analysis, etc.)
Excellent people skills. Ability to
work across multiple teams
Strong verbal/written communication
skills to interact with team
members, customers, management and
support personnel (technical and
non-technical)
Ability to apply critical thinking
skills while meeting impending
deadlines
Ability to prioritize multiple tasks
and switch between tasks quickly
during high stress situations
Good
organizational and time management
skills.
Minimum Education Requirements /
Certification / Licensure For
Analyst IT Senior - IT Security Job
Bachelor's Degree in Computer
Science, MIS, Business, or other
related field or equivalent
experience
Appropriate security certifications,
such as CISSP (ISC)2, MCSA/MCSE:
Security (Microsoft), CCSP (Cisco)
and/or certifications from vendors.
