Information Security Analyst

California Water Service Group invites you to pursue a career in the water industry with the third largest publicly traded water utility in the United States. Our mission is to be the leading provider of water and wastewater services. We’re committed to improving the quality of life for our customers, communities, stockholders, and employees. To achieve that, we align our hiring strategies with the company’s core values of integrity, service, value, health and safety, respect and collaboration, and corporate citizenship so that we can provide quality, service, and value to all of these groups.Our commitment to our employees is evident, as we have been named a Top Workplace in the Bay Area for nine years in a row and designated as a Great Place to Work®, and Cal Water was ranked “Highest in Customer Satisfaction Among Water Utilities in the West” by J.D. Power in its inaugural water utility satisfaction study.

• Analyzes and vets vulnerabilities then validate vulnerabilities are remediated
• Schedules and performs regular vulnerability scanning activities in the corporate network
• Reviews security vulnerabilities to identify risks to computing assets
• Provides technical vulnerability analysis and remediation options
• Reduces vulnerability by improving remediation and patch management process
• Leads discussions with internal stakeholders to ensure remediation efforts adhere to Company standards
• Familiarity with Qualys and Nessus vulnerability scanner
• Familiarity of Network and Web Application Penetration testing
• Ability to report and present findings to a non-technical audience
• Assists with IT Operations request as necessary
• Performs other similar duties as assigned

• Bachelor’s degree in Computer Science, Information Systems and/or 1-3 years experience in an information security role
• Certified Information Systems Security Professional (CISSP), Certified Internal Systems Auditor (CISA), Certified Ethical Hacker (CEH) or other security certification desired
• Must have excellent written and verbal communication skills
• Provide excellent customer service
• Detail oriented
• Ability to exploit recognized vulnerabilities
• Good problem solving and troubleshooting skills with experience exercising mature judgement
• Excellent teamwork and interpersonal skills
• Demonstrated ability to learn new skill such as penetration test validation and security patching
• Exhibit good organizational skills to analyze, develop, and deliver detailed reports meeting tight schedules
• Valid California Driver License

• Knowledge and ability to evaluate, assess, and implement IT risk mitigation processes and procedures
• Knowledge of network security controls and vulnerability management
• Working knowledge of information security standards, rules, and regulations including International Organization for Standards (ISO) 27001, 27002, National Institute of Standards and Technology (NIST), and Defense Federal Acquisition Regulation Supplement (DFARS)
• Demonstrated knowledge of network, server, mobile devices, application, and database security principles for risk identification and analysis
• Demonstrated knowledge and ability to work effectively with auditors, customers, consultants, employees, and vendors
• Demonstrated analytical and problem solving skills
• Demonstrated time management and organizational skills
• Flexible and able to prioritize work