Information Security Analyst - Immediate Need

Planet Home Lending
Clarksville, MD
May 22, 2019
May 24, 2019
Full Time
The Information Security Analyst is responsible for the administration and monitoring of the company's information security infrastructure and assisting with planning for business continuity and disaster recovery. This includes monitoring, investigating and responding to information security events for all company technology devices relating to internal and external compromises and violations of company policy. The position evaluates risks to the company to improve the security architecture of company systems. RESPONSIBILITIES: Monitors the security event management systems and numerous logs for issues and makes recommendations for changes to IT security controls to senior management. These include investigations of employee abuse of computer systems and monitoring of employee compliance with security policy and best practices. Audits the management practices of company security devices (Firewalls, Intrusion Prevention, Web Content Filters, etc) to facilitate enhancement of business requirements and to defend against threats. Coordinates responses to information security events. Monitors the security threat environment and provides analysis on its impact to the organization. Analyzes and assesses the IT infrastructure for compliance with Federal, State, Regulatory and contractual requirements. Makes recommendations as appropriate. Performs & reviews vulnerability scans of systems and monitors remediation efforts. Creates, manages and maintains user security awareness. Develops security awareness messages and communicates throughout the organization and acts as a subject matter expert to Vendor Management on information security related issues involving third parties. Reviews and updates policy and procedures that support the Information Security Program. Miscellaneous duties as assigned. REQUIREMENTS: High school diploma or GED equivalent required Bachelor's degree in computer science or other related field preferred Minimum of five (5) years of Information Security experience required Possession of industry certifications highly preferred including, but not limited to, Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC, especially GSEC), Certified Information Security Auditor (CISA) Experience with the following Web Technologies such as standard and emerging, eg Java, javascript, HTML, XML/XSLT a plus Experience with Networking and Network protocols such as SD-WAN, Cisco ASA firewalls and routers, IDS/IPS, NAC, TCP, SIP a plus Experience SIEM Log Management software Experience with scripting languages a plus Extensive knowledge of vulnerability testing, event log monitoring, application monitoring, risk analysis and compliance testing Ability and willingness to stay current on relevant technology and to learn new techniques, applications, and/or system platforms, as required Demonstrated experience in the field of cybersecurity architecture Expertise in cloud and third-party hosted computing A meticulous attention to detail Strong analytical skills A proven record as an effective communicator both verbal and written Proficient in desktop productivity tools (eg Microsoft Office) Knowledge in the technical aspects of computer hardware, software and network protocols Ability to prioritize and execute tasks in a high-pressure environment Strong project management skills Highly self-motivated and directed Ability to work in a team-oriented, collaborative environment

Similar jobs