search > North DFW jobs > North DFW management/professional

Posted: Sunday, March 12, 2017 4:02 AM

Job Purpose The Information Security Analyst will ensure that a high level of technical security is maintained and information systems are adequately protected. Working under the supervision of the Information Security manager, the Information Security Analyst will participate in corporate projects in order to determine the potential risk and recommend adequate security controls that are based on risk and cost. The Information Security Analyst will have a firm understanding of industry standard regulations, such as SOX, PCI, CJIS, HIPAA and FedRAMP. The Information Security Analyst will work as a technical lead in the implementation and administration of Anti:Virus/Anti:malware products and multi:factor authentication products. They will monitor and respond to environment changes that affect the Security or integrity of Data or Information Systems. They will contribute to the Information Security TeamA?s efforts to protect the confidentiality, integrity and availability of the organizationA?s information assets in compliance with organizational policies, procedures, standards, laws, and regulations.Principal Accountabilities or Duties:Perform system and user administration for key security tools and systemsPerform risk assessments and testing of security controls and systems, including working with process owners to define remediation plans Participate with the implementation of security initiatives Respond to critical computer security incidents by collecting, analyzing and preserving digital evidenceAnswers user questions related to security technology and advises on the security impact of technical changesEnsure that security policies are applied and maintained for network devices, remote access devices, firewalls, servers and workstationsConduct research into governmental and commercial security controls.Research mechanisms and tools for control complianceConduct periodic audits of business entities to ensure continued compliancePrepare extensive policy documentation and periodic review and update of existing documentationAssists with and/or performs special projects as needed Must exhibit all of the companyA?s cultural attributes.Some after:hours work may be required to meet deadlines or execute duties within change control. Business EnvironmentUse industry best practices and security frameworks to not only assure compliance with government and industry regulations, but also to mitigate the risks that could affect the confidentiality, integrity and availability of the company infrastructure. Latitude or Decision:makingMakes recommendations for Information Security policy and controls and assists with the corporate Information security initiatives. Responsible for enforcing compliance to access control request processes and provide reports to the business owners for confirmation. Stay current on security related products, technologies and best practices them to the company as appropriate.Major Skills recommendedExperience with Linux, Windows, and Active Directory security configuration and design, monitoring/alerting, intrusion detection, encryption, vulnerability management and wireless network securityAbility to identify and recommend mitigations for vulnerabilities, exploits, patchesExpert knowledge and experience with Anti:Virus/Anti:malware productsKnowledge of Information Security principals and activitiesExperience with FedRAMP, PCI, CJIS, HIPAA, etcAttention to detail.Ability to work with urgent deadlines.System administration experience is a plus RequirementsInformation security certification required. Security certifications may include, but not be limited to CISSP, CISA, CISM, GSEC, Security+, and certified ethical hackerAt least 5 years of hands:on information security experience in a regulated environmentExperience with threat assessment, vulnerability analysis, risk assessment, information gathering, correlating and reportingAbility to manage changing workloads while maintaining a sense of priorities and de


• Location: North DFW

• Post ID: 48791113 northdfw is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2017