Senior Information Security Analyst

With SYSAZZLE in Boston MA US

More jobs from SYSAZZLE

Posted on May 03, 2019

About this job

Job type: Full-time
Role: System Administrator

Technologies

security, cloud, sysadmin

Job description

Job Description

  • This company is undergoing a digital transformation. As a hybrid-startup, we need the talent to accelerate delivery, but also the depth of experience to effectively manage the digital operation we create. If you have those traits and capabilities, and you are ready to join our team, we'd love to hear from you!
  • The Senior Info. Sec. Analyst collects and monitors security data, assists with compliance, and supports the maturation and improvement of information security services. The position enables secure & resilient operations to facilitate business growth across our platforms. The candidate will interface with consultants, managed service providers (MSPs), and internal team members to realize a vision for a highly effective security strategy. This role reports directly to the Senior Manager, Information Security.

As part of the infrastructure team, this role has a focus on information security event analysis and technologies. The successful candidate must possess the following competencies:

  • IT Security technologies (i.e. encryption, anti-virus, SIEM, perimeter protections)
  • Security Best Practices
  • Data Center & Hosting including private cloud & public cloud environments
  • Networking (WAN/LAN)
  • End User Support (Service Desk, Workstation Support/Engineering, Virtual Desktop)
  • Voice/Telephony/Collaboration (PBX, Turret Phones, O365)
  • Business Continuity / Disaster Recovery
  • Interacts with Vendors (Consultants, MSPs, etc.) Essential Duties & Responsibilities:
  • Develop and implement security policies, technologies and processes to create a best in class security program to protect our business and platform
  • Monitor the organization's information security systems and analyze alerts and reports
  • Analyze vulnerability reports and track the remediation of vulnerabilities
  • Provide metrics to support the risk management program and Information Security program effectiveness assessment
  • Support Security Training and Awareness efforts to include phishing campaigns.
  • Research the latest IT security trends and technologies
  • Participate in the designing of a security architecture into all application & infrastructure solutions
  • Support internal & external risk assessments to evaluate security program effectiveness and conduct independent audits
  • Analyze penetration test results and track remediation of findings
  • Provide input into the security roadmaps and maturity assessments to ensure commitment to continuous improvement over time
  • Safeguard company's information technology assets, intellectual property, and computer systems by recommending best practices and technologies as appropriate
  • Participate in incident response planning, investigation of security breaches and assist with security compliance matters as necessary
  • Respond rapidly to all security incidents, conduct root cause assessments, and recommend solutions to mitigate repeat offenses.
  • Support business continuity & disaster recovery efforts
  • Support the validation of security solutions provided by MSPs to ensure they are functioning properly
  • Support the NERC Critical Infrastructure Protection program Essential Qualifications:
  • B.S. in Computer Science or Technical discipline.
  • 3 - 5 years of experience in the IT security sector, with experience implementing security initiatives
  • Knowledge or experience working energy or financial services sectors, preferably with customer-facing business
  • Must have a strong background in network security and related areas
  • Knowledge or understanding of critical infrastructure preferred
  • Be familiar with the NIST Cyber Security Framework
  • Knowledge of NERC CIP Compliance and IT SOX standards is preferred
  • CISSP required
  • Working knowledge in network & data center operations
  • Hybrid cloud, public cloud (Azure preferred), SaaS experience
  • Strong analytical and problem-solving skills
  • Excellent communications skills and attention to detail

Apply here