Security Analyst

Posted · Add Comment
Published: April 4, 2024
Location
St. Louis, MO / Hybrid
Job Type
Direct
Salary
Based on Experience

Description

Information Security Analyst

The Information Security Analyst is responsible for improving and maintaining a comprehensive Information Security Program for the company. It would include working with all aspects of the company environment including the SCADA network and radio maintenance teams to ensure compliance to all mandates from the FTA, Homeland Security Department, and any other governing body the organization must adhere to. This role seeks to protect against the unauthorized access, modification, or destruction of the company’s systems and information assets. On an on-going basis, this position will manage all activities across the organization to ensure ongoing data security and validation with current security standards.

Responsibilities:

  • Research the latest information technology security trends, to keep current and promote use of the latest technology to protect our information by creating recommendations for company-wide best practices.
  • Coordinate/Conduct frequent simulated cyber-attacks and penetration testing to look for vulnerabilities in the computer systems and take care of these before an outside cyber-attack.
  • Track and coordinate known cyber vulnerabilities following them to completion and ensuring all are properly closed out.
  • Assist in system monitoring and remediation to manage security alerts and identify/reduce false positives.
  • Development cyber security related strategies and approaches including a cybersecurity breach contingency and recovery plan.
  • Research new tools and technologies to assist in the cyber security area.
  • Coordination with external entities on critical cyber matters.
  • Work with other IT Security team members to share information and promote a secure and proactive IT security environment.
  • Work with emergency management and COOP Planners to ensure that the Information Technology’s recovery plan is fully coordinated with the COOP and emergency plans.
  • Investigate and document security breaches and other cybersecurity incidents including assessing damage potential.
  • Perform computer forensics as needed.
  • Implement and maintain vendor supplied security hardware components & software packages.
  • Perform diagnostics for security problems and identify and analyze security risks.
  • Coordination of security assessments with internal audit and external vendors.
  • Assist in developing security awareness and training programs for IT and employees who work with sensitive data.
  • Create and manage Cyber Security policies, standards, procedures, and guidelines.
  • Work with confidential information obtained through security scans and assessments of the company’s systems.
  • Report status and progress on efforts to management as necessary.
  • Other related security duties as assigned.

Knowledge, Skills, & Abilities:

  • Knowledge of NIST Cyber Security Framework, CIS Security Controls.
  • Experience with network and application security including firewalls, VLANs, routers, switches, Linux, Microsoft Windows and VMware operating systems, Oracle and Microsoft SQL Server databases, ecommerce, PCs.
  • Experience performing penetration testing.
  • Experience setting up firewall rules.
  • Experience performing computer forensics.
  • Experience with designing, implementing, and managing an enterprise-wide security program.
  • Experience working with outside vendors to coordinate testing and resolution of security vulnerabilities.
  • Experience writing recovery plans, updating policies/procedures and documenting security breaches.
  • Ability to efficiently and effectively communicate technical information to colleagues and management.
  • Ability to manage time efficiently and multitask when appropriate in potentially high demand scenarios.
  • Ability to solve problems and provide solutions that are technically, financially, and administratively responsible.
  • Ability to provide competent, realistic estimates for cost, effort, and time requirements for assigned initiatives.
  • Technical Expertise: Cisco Firepower, Cisco Secure Endpoints, Cisco Network Analytics, Splunk, RedHat Linux, Microsoft Windows Server, VMware, Citrix.
  • Completion of one of the following recognized professional certifications: QSA (Qualified Security Assessor), CISM (Certified Information Security Manager), CISSP (Certified Information Systems Security Professional), SSCP (Systems Security Certified Practitioner), Certified Ethical Hacker (CEH)

Education and Experience:

  • A./B.S. Degree or equivalent experience required. MS preferred.
  • Minimum of 2 years of cybersecurity experience and a total of 5 or more years’ experience in Information Technology related areas.

Benefits:

  • Fitness Center Access and Wellness Programs
  • Tuition Reimbursement Program
  • Credit Union Membership
  • Health, Dental, Vision Insurance
  • EAP
  • PTO and Holidays
  • 401K Plan and 401K Company Program
  • Retirement Benefits
  • FSA
  • Short-Term And Long-Term Disability Insurance
  • Life and AD&D Insurance
Apply
Drop files here browse files ...

Related Jobs

Operations Center Analyst (2nd Shift)   Remote, United States of America new
May 24, 2024
Application Manager   Remote, United States of America new
May 23, 2024
Senior Compliance & Deployment Engineer   St. Louis, MO / Hybrid
May 17, 2024
Operations Center Analyst   Remote, United States of America
May 14, 2024
Are you sure you want to delete this file?
/