Senior IT Security Analyst - Incident Response

Kelly

(Gold River, California)
Full Time Evenings Weekends
Job Posting Details
About Kelly
At Kelly Services®, we work with the best. Our clients include 97 of the Fortune 100™ companies, and more than 70,000 hiring managers rely on Kelly annually to access the best talent to drive their business forward. If you only make one career connection today, connect with Kelly.
Summary
The Senior IT Security Analyst analyzes and assesses vulnerabilities in the infrastructure (software, hardware, networks), investigates available tools and countermeasures to remedy the detected vulnerabilities, and recommends solutions and best practices. This position is responsible for analyzing and assessing damage to the data/infrastructure as a result of security incidents, examines available recovery tools and processes, and recommends solutions. The Senior IT Security Analyst will also test for compliance with security policies and procedures, as well as assist in the creation, implementation, and/or management of security solutions as needed. This position is part of a 24x7 on-call rotation for Incident Response.
Responsibilities
* Performs log analysis and define security filters and rules for implementation within the Security Information and Event Management (SIEM) * Gathers and distributes technical information pertaining to new security threats and vulnerability trends * Confirms that all monitoring and activity reports scheduled to run, have successfully completed * Executes daily operational checklists and tasks such as: * Log analysis and review * Vulnerability management activities * Management reporting * Alert analysis * Adding, modify and deleting filters * Verifying that escalation follow-up activities have been accomplished * Investigating suspicious security event activity * Maintaining and enforcing adherence to standards, policies and procedures * Verifies correct security feed settings * Understands the latest security information in order to validate the security analysis and identification capabilities of the monitoring technologies * Understands security device outputs and functions; primarily firewall, IDS/IPS, router, switch, etc. for device vulnerabilities or security issues * Researches and understands the currently published vulnerabilities of enterprise hardware, operating systems, and applications * Acts a lead for Information Security assessments and recommends appropriate and cost effective controls to address identified security-related risks * Serves as a lead in the development and implementation of application and infrastructure security programs * Serves as a lead in the development and implementation of user account security * Guides and mentors junior members of the team * Performs other duties as assigned
Ideal Candidate
**Education** * Bachelor’s Degree in Computer Science, Information Security or other related field preferred **Certification/Licensure Required** * An industry recognized information security certification, such as a CISSP (or Associate), SSCP, CEH, or equivalent * At least one technical certification related to a major platform (IBM, Microsoft or Cisco) **Government Clearance & US Citizenship Requirement** * National Agency Check (NAC) background clearance required **Experience Required** * Minimum five years Information Technology and/or network experience * Minimum three years Information Security related experience * Minimum one year supervisory or team lead experience * Any combination of academic education, professional training or work experience, which demonstrates the ability to perform the duties of the position. * Ability to clearly communicate Information Security matters to executives, auditors, end users, and engineers, using appropriate language, examples, and tone * Ability to work outside of regular business hours as required which can include evenings, weekends and holidays * Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling) * “Hands on” security knowledge of one or more of the following platforms: Windows/Unix/Linux * Strong analytical, technical, and problem solving skills * Experience with DNS, NTP and Citrix, TACACS, IDS, IPS and various SIEMS * Working knowledge of protocols and technologies such as TCP, UDP, SSL, FTP, SMTP, NetBIOS and DHCP * Working knowledge of HTML, CSS, JavaScript and WML * Ability to interpret information security data and processes to identify potential compliance issues * Ability to quickly understand security systems in order to identify and validate security requirements * Ability to clearly communicate Information Security matters to executives, auditors, end users, and engineers, using appropriate language, examples, and tone * Excellent interpersonal, organizational and technical writing skills * Ability to be a self-starter who is accountable, requires minimal supervision and is open to new ideas * Ability to work in a large, dynamic and complex organization, requiring creativity and flexibility * Possess the personal characteristics of professionalism, credibility, commitment to high standards, innovation, discriminating judgment and accountability * Excellent leadership skills and teamwork skills

Questions

Answered by on
This question has not been answered
Answered by on

There are no answered questions, sign up or login to ask a question

Want to see jobs that are matched to you?

DreamHire recommends you jobs that fit your
skills, experiences, career goals, and more.