Security Analyst III

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Three (3) years of experience in any occupation with Information Technology (IT) experience, or related.
• Three (3) years of required Information Technology (IT) experience, or related must include:
• Three (3) years of experience in a support and operations or design and engineering role.
• Three (3) years of experience in industry-accepted data processing controls and concepts as applied to hardware, software, data, network communications, and people.
• One (1) year of experience working in a Security Operations Center or in a Security Analyst role.
• One (1) year of experience with at least one common industry security frameworks (NIST, ISO, or HIPPA).
• One (1) year of experience participating in internal and external assessments and audits.
• One (1) year of experience with at least one of the following categories of enterprise security platforms: intrusion prevention and detection tools; security event and incident management tools; anti-virus, anti-malware, and data loss prevention systems; or vulnerability scanning, management, and tracking.

Responsibilities

• Develop testing plans to ensure quality of implementation.
• Coordinate and prepare the reporting of data security events and incidents.
• Provide system and network architecture support for information and network security technologies.
• Provide technical support to business and technology associates in risk assessments and implementation of appropriate information security procedures, standards and technologies.
• Represent major upgrades and reconfigurations in change control.
• Design & analyze mix of vendor services meeting business and information security requirements.
• Maintain relationship with key vendors.
• Lead lights on initiatives to consolidate equipment and implement business relocations; determine and perform complex configuration changes to meet business and information security requirements.
• Perform capacity analysis.
• Recommend and implement capacity increases. Serve as the technical escalation for results of preventative maintenance routines.
• Supervise preventative maintenance.
• Represent infrastructure security support in significant projects and perform the most complex operations and administration tasks.
• Respond to level 3 & 4 change and problem requests without supervision.
• Lead level 1 & 2 incident recoveries and root cause analysis.
• Review and respond to EDR alerts.
• Maintain and deploy host based firewall policies.
• Monitor Vulnerability Scan Results via Dashboard.
• Initiate ad-hoc and manual Vulnerability Scans as needed.
• Document and track vulnerability remediation status.
• Respond to and investigate vulnerability alerts received from CMS CCIC.
• Review and investigate notable events using Splunk.
• Monitor and support Data Loss Prevention efforts (logs/infrastructure support).
• Support and maintain security orchestration, automation, and remediation (SOAR) tools and use cases.
• Monitor intrusion detection systems, including patching and maintenance of IDS signatures.
• Provide infrastructure and administrative support for Continuous Diagnostics and Monitoring (CDM) efforts.
• Maintain software whitelisting application and infrastructure, reviewing and responding requests for changes to update rules, in accordance with established policies.

Benefits

• a comprehensive benefits package
• incentive and recognition programs
• equity stock purchase
• 401k contribution
• merit increases
• paid holidays
• Paid Time Off
• incentive bonus programs (unless covered by a collective bargaining agreement)
• medical, dental, vision, short and long term disability benefits
• 401(k) +match
• stock purchase plan
• life insurance
• wellness programs
• financial education resources