Search for More Jobs
Forward job to a friend
Apply without Registering
Apply by creating/using an account
Please enter your registered email address, and we'll email you a link to reset your password right away.
General Summary: IT Security Analyst - Senior is a key member of the Emergency Response Team performing incident response for security and data loss incidents. IT Security Analyst - Senior establishes policies and procedures necessary to ensure the security of information system assets to protect them from intentional or inadvertent access, disclosure, or destruction in accordance with company policies and external requirements such as HIPAA, Sarbanes-Oxley, SAS70, DIACAP, and PCI. Essential Functions: Direct and leads project teams in the implementation of security measures to improve the security posture of the environment and to meet corporate security policies and external regulations, e.g., Sarbanes Oxley and DIACAP Establish policies and procedures necessary to ensure the security of information system assets and to protect them from intentional or inadvertent access, disclosure, or destruction Perform risk assessments for sensitive internal and external systems Perform incident analysis and response in the case of computer security incidents or breaches Perform forensic investigations based on legal or human resources requirements Tune log sources and alerting to provide timely and accurate incident response notification Create maintain documentation for incident response activities Ensures that user community understands and adheres to necessary procedures to maintain security The role is responsible for ensuring the security of information system assets and to protect them from intentional or inadvertent access, disclosure or destruction Ensures that the security of information systems assets is in compliance with company policies, SAS70, Sarbanes Oxley, Payment Card Industry, HIPAA, NIHB and DIACAP Solves complex problems and takes a broad perspective to identify innovative solutions. Works independently with guidance in only the most complex situations Represents the organization as the prime technical contact on contracts and projects Guides the successful completion of major programs and may function in a project leadership role Owns IT Security recommendations and decisions as errors may result in failure to achieve major organizational objectives. Ensures that user community understands and adheres to necessary procedures to maintain security Qualifications: Bachelors degree in computer related field desire Minimum 6+ years of relevant working experience 5+ years experience in information systems environment, preferably in IT Security Certification in information security (CISSP, CISM, or equivalent) preferred Incident Response/Forensic Certifications a plus Familiarity with external regulations, e.g., DIACAP, HIPAA, Sarbanes-Oxley Strong understanding of information security principles Familiarity with domain structures, user authentication, and digital signatures Understanding of data communication networks Experience with security tools and systems Excellent organizational skills and ability to communicate with internal/external entities and executives a must Effective leadership skills, demonstrated ability to coordinate people and teams to project / activity completion and the ability to work in a team environment, sharing workloads and responsibilities Customer service-oriented Ability to work in a flexible environment where requirements and procedures continuously evolve Ability to multi-task and manage time effectively Must be able to weigh business needs against security concerns and articulate issues and options to management
Apply by creating/using an account