Mid Career (2+ years of experience)
Our Client is looking for a Security Analyst to be responsible for proactively protecting the integrity, confidentiality, and availability of information in the custody of or processed by providing information assurance expertise and security best practice across operating systems, networks, databases and enterprise security applications. The candidate will work across the enterprise with business and IT to help design and then implement secure solutions.
Plan and oversee Infrastructure security vulnerability assessments.
Help identify risk issues; ensure that detailed management and executive summary reports of findings and recommendations are produced; and, monitor improvement to reported action items.
Review IS department and business unit information security reports for exceptions to established policy standards, security violations, significant system changes, and risk mitigation initiatives.
Assist business partners identify appropriate security controls and/or process improvement measures to resolve or mitigate known information security deficiencies.
Work in conjunction with the Information Security Officer, Security Risk Manager and Security Architect to design and implement secure solutions that enable THP business across the enterprise.
Maintain understanding of regulatory requirements, advisories, and emerging information technology trends and security control best practices.
Complete regular risk assessments, Business Impact Assessments and remediation processes for all Infrastructure systems.
Define, document, maintain, communicate security posture for all Infrastructure systems.
Responds to audit, security questions and vendor assessments.
Bachelor’s Degree in Computer Science or related field or equivalent work experience.
Strong knowledge of security best practices.
Strong knowledge of Windows Server and Active Directory domains and configurations.
Strong knowledge of Linux and HPUX.
Design of network hardware, software and infrastructure for high availability and tolerance.
A Certified Information Systems Security Professional (CISSP) is preferred but not required.
Any additional experience with operating systems, security and best practice is helpful.
Job keywords/tags: Active Directory , SiteMinder , Linux , HPUX , MCSE