Chat with a recruiter now! Copy and paste this link in your browser
The IT Security Analyst is the company's focal point for evaluating current security controls, identifying gaps in the security controls, and determining the course of action to address the gaps.
The Security Analyst also ensures a defense in depth security architecture is in place to prevent attackers from infiltrating company information and impacting revenue generating systems.
Develops and administers security policies to aid in controlling access to sensitive company information
Ensures perimeter IT systems are hardened, using applicable encryption methods, and following best practices in security.
Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration, or denial of access to information.
Develops new security solutions and improves existing implementations in coordination with internal groups.
Manages the company's incident response program.
Uses advanced troubleshooting skills to solve technical issues that interrupt daily operations on production systems by performing the following duties.
Essential Duties and Responsibilities
Define, review, and enforce information security policy, standards, and guidelines for business operations and technology implementations
The Security Analyst works closely with other members of the Security Team to manage and support security administration tasks and security projects. This position requires a detail-oriented individual able to efficiently analyze and resolve problems
Monitor and review IT security controls to identify areas of opportunity for improvement and operational effectiveness
Assist with implementation of Security Risk Assessment methodology, policy, strategy and process
Assist with mapping controls to policies, procedures, and processes to ensure adequate coverage
Perform process and control walkthroughs and document control narratives as assigned
Assist with third party security risk assessments
Perform access control management and reviews
Assist with IT remediation efforts and track completion status of deficiencies
Assist in the on-going maintenance and process improvements of compliance programs (PCI, SOX, etc.)
Proactively identify information security risks and develop solutions to mitigate those risks
Evaluate and recommend new and emerging security products and technologies to improve security posture
Must be able to perform hands-on support for a wide range of security technologies including, but not limited to: SEIM, IDS/IPS, and HIDS.
Monitor and maintain the day-to-day operation of in-place security solutions
Implement recovery methodologies & technologies supporting an enterprise wide datacenter and application environment
Oversee the corporate security awareness program
Integrate security into the SDLC
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Bachelor's Degree in Computer Science, Information Technology, Management Information Systems, Business, related technical field, or an equivalent combination of education and experience.
5+ years related technical experience, preferably in an information security or networking role.
Strong understanding for Networking and Security fundamentals and best practices.
Excellent interpersonal and organizational skills, ability to handle diverse situations, multiple projects and changing priorities.
Familiarity with IBM's SEIM tool preferred.
Familiarity with malware analysis and protection, content filtering, identity and access management, and data loss prevention, application firewalls, vulnerability scanners
Strong written and oral communication skills required.
Ability to understand the functional needs of the business and use a balanced approach to security practices.
Relies on moderate experience and sound judgment to plan and accomplish goals.
A certain degree of creativity, energy, and flexibility is required.
CISSP or related security certifications strongly preferred. Chat with a recruiter now! Copy and paste this link in your browser
About the Company
Tech Talent Link connects remarkable technology professionals with remarkable organizations. We provide this service following our core values: Collaborative, Accountable, Responsive, Ethical, Enthusiastic and Respectful.
Employment Type: Permanent
Click here to apply
Please mention that you saw the job on Business Analyst Learnings