IT Security Analyst, I, II, III or Senior

About The Position

Requirements

• High school diploma or GED.
• Effective written and oral communication skills are required plus a willingness to learn in a rapidly changing environment.
• Demonstrated ability to work both independently and as part of a team.
• Requires the qualifications for an IT Security I plus experience with day to day security administration.
• Requires self-direction and the ability to work with vendors on creating statements of work and completing that work.
• Requires Industry certifications (i.e. GSEC or CISSP) or equivalent experience of 3-5 years in an information security or network discipline.
• Requires the qualifications for an IT Security II plus leadership abilities.
• Provide mentoring and guidance to junior members of the team
• Requires industry certifications (i.e. GSEC or CISSP) or equivalent experience of five or more years in an information security or network discipline.
• Requires the qualifications for an IT Security III and the ability to lead any information security project across the enterprise.
• Requires industry certification (i.e. GSEC or CISSP) or equivalent experience of seven or more years in the information security discipline.
• Requires basic project planning & project management experience for leading teams.

Nice To Haves

• Bachelor’s degree in Management Information Systems, Computer Science or related discipline is preferred.
• Two or more years in an IT related discipline is preferred.
• Assists more experienced administrators on projects and deals with day to day support.
• Individual is considered at full proficiency in the information security field and a leader on the security team.
• Works with other IS groups to ensure the understanding and coordination of effective results.
• Ensures that IS Standards and practices are understood and consistently applied.
• Demonstrates basic project planning & project management skills for leading individual or small team efforts.
• Has successfully led and completed IT Security projects, or lead teams as part of larger projects.
• Has Security Architect experience or provides strategic direction on how the state of information security should evolve.
• Visionary that is proficient at all required information security aspects and helps others to become more proficient.

Responsibilities

• Performs security analysis, including architecture review, baselines, vulnerability assessments, and risk assessments to proactively identify security risks and exposures
• Performs security incident response and forensic investigations
• Provides anti-virus, spam, and malware administration and management.
• Monitors security events across the network and ensures alerting and resolution of security issues and threats.
• Works with internal and external project managers to complete projects and efforts on time.
• Leads or participates in IT projects to provide information security expertise, guidance, or training.
• Works with internal and external auditors to implement technical aspects of regulatory/compliance/privacy controls, such as Sarbanes-Oxley, NERC CIP, HIPAA, and PCI DSS.
• Responsible for provisioning and de-provisioning users
• Evaluates new and emerging security technologies, features, and products to determine their application in the protection of company information assets
• Provides second-level support for the IT Help Desk.
• Performs 24 x 7 support on a rotating basis.
• Ensures change control processes are followed and service levels affected by those changes are maintained.
• Works with Human Resources or Legal to provide sensitive investigative or litigation hold support.
• Responsible for day-to-day security administration of company databases (e.g. Oracle and MSSQL), e-mail applications, key business applications and networks