Information Security Analyst

Essential Functions

* Participates in identifying business process requirements and related business/application solutions for a specific business need.

* May provide training and support directly to customers.

* Identifies/receives problems, researches alternatives, prepares presentations, drives solutions, tests to confirm, gains consensus, and implements solutions for defined business processes.

* Creates documentation of technical security requirements and functions.

* Generates and creates reports; researches and analyzes data and report trends to management/business partner.

* Under general supervision, oversees a small to medium scale projects or phases of a larger project.

* Consistent Time & Task Entries with high quality required, enables automated capacity planning accuracy.

* Conducts risk assessments, interviewing internal and external customers, to gain technical knowledge of security/ compliance requirements.

* Provides direct support to information systems development and business community regarding risks associated with new or changing technologies.

* Keeps abreast of industry advancements and incorporates that knowledge into daily work activities.

* Participates in evaluation and selection of new technology.

* Resolves security problems to obtain operations across all platforms including email, files transfer, multimedia, teleconferencing, etc.

* Required to perform duties outside of normal work hours based on business needs.

Job Complexities & Impact

* Works on problems of moderate scope where analysis of situations or data requires a review of a variety of factors

* Exercises judgment within defined procedures and practices to determine appropriate action

* Follows department processes and procedures and makes recommendations to these processes

* Errors may cause significant delay of process development or problem resolution

* Works independently setting own priorities and objectives. Work is reviewed for soundness of judgment and overall accuracy

* Ability to establish and maintain effective working relationships within and between departments

Supervision Received or Extended

* No responsibility for the supervision of others

Knowledge and Skills/Technology Used

• Must have hands on working knowledge of UNIX/AIX, Microsoft NT/2000, firewall multi-layer design and implementation, router access list/packet filtering (CISCO), WANs, LANs, the Internet, Intranets, network protocols and network services (i.e., telnet, ftp, etc.), Intrusion detection systems, Virtual Private Network (VPN), two factor authentication
• Experience in implementing Information Security technologies and/or processes required
• Experience in product evaluation and managing vendor relationships required
• Experience in Security Information & Event Monitoring (SIEM) Tools, preference Alert Logic, Microsoft Sentinel, other SIEM Tools acceptable
• Experience in representing InfoSec during Audit Due Diligence Assignments
• Experience in representing InfoSec during IT Disaster Recovery Assignments
• Experience in defining Information Security strategy and integrating security technologies into corporate frameworks
• Strong written and verbal communication skills
• Strong interpersonal skills
• Self-motivated; self-starter
• Ability to manage multiple tasks and respond quickly to emergent problems
• Proficient in Microsoft Word, Excel, and PowerPoint

• Generally requires a BS Degree in Computer Science, Information Technology, Telecommunications, or Electrical Engineering, or equivalent work experience

• Must have minimum 3 years information security experience
• Must have 2+ years experience with networking, intrusion detection, VPN, PKI, Checkpoint and PIX firewalls, CISCO; NAC; Identity management and encryption technologies

• CISSP, GIAC, CCNA, CCNP preferred

The pay range for this role is $65,550.00 - $87,375.00

This hiring range is a reasonable estimate of the base pay range for this position at the time of posting. Pay is based on a number of factors which may include job-related knowledge, skills, experience, business requirements and geographic location.

Disclaimer
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All personnel may be required to perform duties outside of their normal work hours and/or responsibilities from time to time, as needed.