10 Mar
Information Security Analyst
Michigan, Owosso , 48867 Owosso USA

Vacancy expired!

A Covenant Eyes Information Security Analyst is a technical, hands-on, high-visibility position that plans, coordinates and participates in activities related to the design, development, implementation, compliance, and ongoing support of enterprise security solutions. These solutions apply to both internal and external information systems, networks and applications.

Responsibilities
  • Design, configure, maintain, monitor and support security solutions for CE’s high availability and geographically dispersed internal and external systems, applications and networks.
  • Protect CE data and information assets against unauthorized access, modification, or destruction.
  • Provide subject matter expertise on security best practices for application, database, and network development, design, and support.
  • Research and advocate the latest technologies and solutions to support the security requirements of internal and external customers.
  • Assess client needs against security concerns and resolve information security risk issues.
  • Troubleshoot and correct issues.
  • Train others on security awareness.
  • Develop, write, and document IT security policies and standards.
  • Work both independently and in cross functional teams.

Requirements
  • 5+ years of professional experience
  • 3+ years of IT security related experience
  • At least one information security certification, including but not limited to CEH, CISSP, GPEN, OSCE, OSCP, OSWE, GIAC family
  • Planning and execution of IT security initiatives
  • High-availability web application and website security best practices
  • Firewall and intrusion prevention
  • Active threat mitigation knowledgebase
  • Linux (CentOS/RHEL7)
  • Networking (BGP, firewall, routers, subnets, switches, VLANs, VPN)
  • Shell programming (bash/ksh, Python, PowerShell)
  • Bachelor’s degree or equivalent experience

Preferred Skills
  • Experience with cloud security (AWS and Azure preferred)
  • Understanding of security capabilities within a software development organization (i.e.: SCA, SAST, DAST, IAST, WAF, Encryption, Identity and Access Management, CI/CD Pipelining etc.)
  • Proficiency in a Linux environment and the common security toolsets (nmap, Wireshark, burp proxy, kali, etc.)
  • Ability to clearly articulate OWASP Top-10 vulnerabilities and their common mitigations
  • Threat Modeling mindset and threat modeling tooling background
  • Experience with SIEM and data logging toolsets (Splunk, Datadog, Sumo Logic)
  • Knowledge of Vulnerability Management Platforms optimizations strategies (Qualys, Tenable, etc)
  • Endpoint security solutions (Crowdstrike, Carbon Black, EPP, EDR, DLP)
  • Email security, simulated phishing attacks, and training.

Vacancy expired!


Report job