Security Analyst

About The Position

Requirements

• Formal Education/Knowledge: Work requires knowledge of a specific vocational, administrative, or technical nature which may be obtained with a two-year associate's degree, diploma or equivalent from a college, technical, business, vocational, or correspondence school. Appropriate certification may be awarded upon satisfactory completion of advanced study or training.
• Experience: Minimum of 4 years of experience in a related field.
• Certifications and Other Requirements: Valid Driver's License. Ability to meet the criminal background regulations mandated by the FBI CJIS Security Policy. Must possess two certifications from the following organizations (or similar): Microsoft; Cisco; VMware; Comp TIA; Commvault; ISC2; GIAC; etc.
• Reading: Work requires the ability to read technical instructions, technical specifications, trade magazines, responses to RFPs/RFQs, planning documents, policies/procedures, and documents generated by staff at a high level of comprehension.
• Math: Work requires the ability to perform math calculations such as addition, subtraction, multiplication, division and algebra that require calculations and formulas.
• Writing: Work requires the ability to write interoffice memos, creation of process and procedural documentation, user manuals, staff presentations, issue papers, planning documents, and requests for proposals at a high level. Many assignments require translation of technical terms.
• Managerial: Semi-Complex - Work requires the occasional direction of helpers, assistants, seasonal employees, interns, or temporary employees.
• Budget Responsibility: Moderate - Supports the preparation of the budget documents; may do research to justify data used in documents for a unit or division of a department. May recommend budget allocations. Often compiles data and/or enters or oversees data entry. May have responsibility for monitoring budget expenditures (typically non-discretionary expenditures)
• Policy/Decision Making: Significant - The employee normally performs the job by following established standard operating procedures and/or policies. There is a choice of the appropriate procedure or policy to apply to duties. More complex work as well as decisions with more significant impacts are typically reviewed prior to being finalized.
• Technical Skills: Comprehensive Application - Work requires advanced skills and knowledge in approaches and systems, which affect the design and implementation of major programs, solutions for highly complex issues, and/or processes organization-wide. Independent judgment and decision-making abilities are necessary to apply technical skills effectively.
• Interpersonal/Human Relations Skills: High - In addition to the sharing of information, interactions at this level may also include providing advice to others outside direct reporting relationships on specific problems or general policies/procedures. In many of the interactions, contacts may require the consideration of different points of view to reach agreement. Elements of persuasion may be necessary to gain cooperation and acceptance of ideas.

Responsibilities

• Participates in the planning and design of enterprise security architecture, under the direction of the IT Information Security Officer, where appropriate.
• Participates in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the IT Information Security Officer, where appropriate.
• Participates in the planning and design of an enterprise business continuity plan and disaster recovery plan, under the direction of the IT Information Security Officer, where appropriate.
• Maintains up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
• Recommends additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
• Performs the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise's security documents specifically.
• Assists with the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices).
• Maintains operational configurations of all in-place security solutions.
• Monitors all in-place security solutions for efficient and appropriate operations.
• Reviews logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
• Participates in responding to and investigating security incidents.
• Participates in the design and execution of vulnerability assessments, penetration tests, and security audits.
• Provides on-call support for end users for all in-place security solutions.