Previous Job
Information Security Analyst
Ref No.: 18-04251
Location: Horsham, Pennsylvania
Position Type:Direct Placement
Start Date: 05/01/2018
My direct client is looking for an Information Security Analyst to join their team!

Title: Information Security Analyst
Location: Horsham, PA
Rate: DOE
Start: ASAP

Interview Process: PS and Onsite Interview

Information Security Analyst

The Information Security Analyst will be responsible for developing, implementing, and monitoring information and network security. This individual will be focused on network security, intrusion detection/prevention, vulnerability assessment, proactive network monitoring and protection, risk assessments, will participate in systems and application development and deployment decisions from the perspective of security best practices. From a strategic perspective, this individual will help ensure the ongoing integration of information security with business strategies and requirements across a broad spectrum of business initiatives.

  • Conduct vulnerability and compliance scans in accordance with published schedule; develop processes to drive 100% reporting of desired devices; submit results to Compliance staff for submission to regulatory body.
  • Perform analysis of scan results to identify gaps; Work with engineering staff to remediate findings.
  • Examine business requirements and make sound recommendations for implementation of security controls based on knowledge of available enterprise controls.
  • Perform detailed technical testing of security controls and produces detailed written reports of the test results.
  • Assist project teams and information owners in identifying security control objectives and appropriate security controls for protecting Company information and assets.
  • Contribute technical designs for security controls for information assets under development.
  • Participate in all phases of the SDLC to advise development staff on security issues, and to develop security requirements and controls for project outcome.
  • Perform periodic penetration testing of all applications and network elements for adherence to company security policies.
  • Respond to security incidents.
  • Perform other duties as assigned
  • Bachelor's degree in Computer Science or related field preferred.
  • Four or more years of experience in network, host, data and/or application security in multiple operating system environments.
  • Experience working with IP networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, email and access-lists.
  • Familiarity with application programming vulnerabilities and their detection and mitigation.
  • Familiarity with application penetration methodologies.
  • Experience working with internet, web, application and network security techniques.
  • Experience working with relevant operating system security (Windows, Solaris, Linux, etc.).
  • Experience working with leading firewall, network scanning and intrusion detection products.
  • Experience working within compliance-controlled environments (PCI, SAS70/SSAE16, HIPAA, FISMA), FISMA preferred.
  • Familiarity with NIST Special Publications and SA accreditation process methodology.
  • Security certifications, such as GAC, CEH, or CISSP. CISSP preferred
Please respond back with your most recent resume in word document form!