Security Analyst
5 Months
Bloomington, IL, US
This is Vamshidhar from Global Data Solutions, One of the clients looking for a Security Analyst, Bloomington IL. Share suitable profiles at vamshid...@gdatasol.com
Significant duties and responsibilities for this position:
· Applies information security common bodies of knowledge from industry organizations in conjunction with client's Enterprise Information Security Policy and Enterprise Privacy Policy.
· Participates with business partners in strategic design to translate security and business requirements into technical designs and solutions.
· Researches/investigates emerging security topics, threats, capabilities, and solution options. Applies research to policy and governance, technology strategies, and solution architecture.
· Understands the evolving governance, compliance, and regulatory landscape as it pertains to information security, advises on appropriate areas of subject matter expertise, and assesses efficacy of controls.
· Implements, integrates, and supports Enterprise infrastructure with technical applications and related vendor software/hardware
· Performs research on infrastructure technologies and tools; designs and implements infrastructure architecture; implements and upgrades products
· Responsible for the integrity of the infrastructure through product selection, development, understanding and managing the infrastructure, performance, and stability
· Develops, follows, and/or implements infrastructure policies, strategies, guidelines, standards, and procedures
· Interfaces with business partners to:
- Understand their technical needs
- Design, develop, or recommend integrated technical solution
- Implement and support integrated technical solutions
Other duties and responsibilities and of this position:
· Strong written and oral communication skills including an ability to explain complex technical concepts to non-technical audiences.
· Understanding of the software development lifecycle.
· Significant understanding of OWASP principles, application architecture, ESAPI Framework, and ITIL principles.
· High level understanding of privacy and compliance considerations/regulations (state breach requirements, GLBA, HIPAA, etc.).
· Experience evaluating/working with third-party service providers.
· Protects Enterprise data and resources from accidental or intentional disclosure, modification and destruction by unauthorized personnel.
· Implements established security patterns and policies.
· Contributes to the development of security strategies, guidelines, standards and procedures.
· Continual education and research with emerging security best practices
· Identify and document enterprise risks
· Interfaces with business partners to:
a. Understand their security requirements
b. Design, develop or recommend security solutions
c. Implement and support security solutions
Qualifications/skills and experience/knowledge required for this position:
1. Must have experience in one of the following:
a. Windows Server Security (File ACLs, Hardening, GPOs)
b. UNIX/Linux Security
c. Network security
d. Directory Security
2. Must have experience in one of the following:
a. Java Security Concepts (Websphere, Tomcat, JBOSS is preferred)
b. IIS/.Net Security
c. Authentication Configuration/Troubleshooting (Kerberos, LDAP, Basic Auth)
3. Desired experience in one of the following:
a. Scripting (VBS, Shell, Bat, Powershell)
b. C++
c. C#
d. Java
4. Ability to work in a team environment.
5. Ability to solve problems logically and systematically.
6. Demonstrated customer service skills.
7. Self-motivated and able to work with minimal supervision.
9. Availability to provide coverage during off-business hours when necessary.
10. Ability to understand business requirements and technical capabilities to support the requirements
Qualifications/skills and experience/knowledge desired for this position:
1. SANS Security Essentials (GSEC), Security +, or CISSP certification.
2. Testing Experience
a. Writing Test Cases
b. Executing Test Cases
c. Understanding of Testing Life Cycle
3. Application Vulnerability Management Experience
4. Knowledge of SQL and database query languages
Vamshidhar
309-807-5439
--
You received this message because you are subscribed to the Google Groups "US_IT.Groups" group.
To unsubscribe from this group and stop receiving emails from it, send an email to us_itgroups+unsubscr...@googlegroups.com.
To post to this group, send email to us_itgroups@googlegroups.com.
Visit this group at http://groups.google.com/group/us_itgroups.
For more options, visit https://groups.google.com/d/optout.
