Information Security Advisor, AMS

About The Position

Requirements

• Must have advanced skills/knowledge in several of the following areas: Background: Information Security Operations
• Project Management
• Network Security Architecture & Administration
• Windows / Linux Administration
• Must understand TCP/IP networking and routers/access control devices
• Must understand vulnerability management
• Broad understanding of threat hunting and incident response activities
• Must have intermediate knowledge of common technologies (SIEM, EDR, FW, IDS/IPS, AV, SEG, DLP, etc)
• SIEM technologies (Splunk, QRadar, LogRythm, Sentinel, etc)
• Firewall technologies (Palo Alto, Fortinet, Cisco, Check Point, Juniper, etc)
• Endpoint security technologies (Microsoft Defender, Carbon Black, Cybereason, Cortex, Crowdstrike, etc)
• Microsoft security suite preferred (Sentinel, Azure, MDATP, etc)
• Excellent customer service skills
• Excellent analytical thinking and problem-solving skills
• Strong communication skills
• Self-managed/directed and team oriented
• Strong project management skills
• Deadline and detail oriented
• Highly self-motivated
• At least 5 year experience in Information Security or Networking
• Certification(s) in Security Sector (CISSP, GIAC, Security+, Cisco etc.)
• A high school diploma or equivalent is required; a college or university degree is a plus.

Responsibilities

• Provide a single point of contact to the account management and delivery teams for all operational security related activities for the customer account. Maintain and oversee relationships for all delivery organizations providing security support.
• Manages the implementation of the Security Agreement. Proactively drives the operational compliance on the account. Provide in-house consultancy on information risk management matters and advise on the implementation of security controls on the Account.
• Oversee the implementation and management of operational security activities,processes and policies as required (e.g. Security Incident Management Process).
• Track and assist in the management of the resolution of reported operational security issues. Recommend actions, reviewing plans and monitoring progress of remedial actions. Manage to resolution security risks identified as a result of reviews and audits, changes in Trustwave or customer environment, changes in operating practices or processes, changes in technology etc.
• On a regular basis (recommended at least monthly), meet with the account team to review security status, review any risks, issues, incidents, outstanding activities, current and planned changes.
• Provide informal security assessments for Trustwave delivered processes or architectures to ensure that contractual requirements for information risk management and security controls are satisfied. Regularly review the delivery environment of the account to identify security risks to Trustwave or the customer.
• Participate in change control (review and/or approval) activities for changes that may impact the customer's security posture
• Serve as a dedicated focal point for managing security or anti-virus incidents that occur in the customer's environment.
• Provide security-related education to ensure security awareness and knowledge of customer applicable security policies and processes. Answers questions and concerns regarding customer applicable security policies and processes.
• Ensure that opportunities to improve security are identified. Research new security technologies and practices and recommend additional security services as required.
• Offer executive-level presentations for the account or client management and proactively keep Trustwave senior leadership abreast of all account concerns.

Benefits

• Comprehensive medical, dental, and vision insurance.
• 401(k) with employer matching.
• Generous paid time off and holidays.
• Flexible spending accounts and health savings accounts.
• Employee assistance programs.
• Training and development opportunities.
• Adoption assistance program.