12 Apr
CyberSecurity Analyst
Vacancy expired!
- Participate in the creation and maintenance of data and network security policies and procedures.
- Provide system assurance and security oversight in EIS change control process; review and evaluate risks of submitted changes and impact to the security of CSMC network and systems.
- Review logs from intrusion detection and monitoring systems; conduct correlation analysis and take action accordingly.
- Facilitate external third-party assurance reviews to assess networks (internal, external, wireless, etc.).
- Work with technical teams to facilitate & promote security incident response procedures, address monitoring concerns, and identification of criteria for audit reporting.
- Conduct on-demand forensics analysis and review of compromised systems and/or systems used in potential un-secure and un-trusted manner.
- Conduct periodic review and scanning of DMZ assets, critical servers, internal/external, and wireless networks.
- Develop security metrics and reporting on security monitoring efforts.
- Use security monitoring tools to evaluate and improve the security of organization systems and network.
- Maintain and support the security tools suite to ensure logged data fidelity and integrity.
- 2+ years’ experience as a security specialist with knowledge in solution design and deployment. Operations experience in desktop, server, network, and server technologies.
- Demonstrated understanding of computer/network security, operating systems (UNIX/LINUX, Windows and NT)
- LAN/WAN networking protocols such as: TCP/IP, routing, firewalls, IDS/IPS, PKI and encryption.
- Solid understanding in Information Classification, Network security protocols, methods and technologies, Application and Web Layer Security (Web 2.0, Secure Messaging, Secure Protocols), Continuity of operations planning and disaster recovery strategies and architectures, and Identity Access Management and Access Control.
- Knowledge of, and experience with regulatory and compliance information security frameworks, standards, and best practices (NIST, ITIL, HIPAA, PCI-DSS, ISO 27000 series, etc.).
- Bachelor’s degree in Computer Science/related field (preferred); or the equivalent in education and work experience.
- Security certifications from SANS or equivalent (GIAC, GSEC, SSCP; CISSP) (allowed to be acquired within first 6 months).
Vacancy expired!