Security Analyst (Durham, NC)

Location: Durham, NC
Date Posted: 04-04-2018
Position: Security Analyst
Location: Durham, NC (27701)
Duration: Full-time direct hire

The primary role of the Security Analyst is to ensure the secure operation of the company network and systems through analysis, monitoring, risk assessments, and testing. The Security Analyst will analyze and resolve security issues in a timely and accurate manner to reduce company risk while maintaining a strong understanding of current security threats, vulnerabilities and industry best practices; and, will also recommend improvements to infrastructure as needed. 

RESPONSIBILITIES
  • Analyze threats and vulnerabilities and perform risk assessments of technologies and processes.
  • Evaluate technology improvements and/or enhancements that would provide greater security protections for the Bank’s systems and networks.
  • Design and conduct compliance assessments of Bank technologies against industry best practices and provide recommendations.
  • Design, plan and perform regular vulnerability assessments & penetration te Collaborate with infrastructure custodians to remediate vulnerability findings.
  • Represent the IT Security group as a technical lead for implementation of new and upgraded technologies.
  • Design, analyze and report on the effectiveness of internal security systems including patch management, anti-virus, SIEM, network access control, web and email filtering systems, IDS\IPS, and DLP components.
  • Analyze, review and make recommendations on firewall and perimeter IDS\IPS rules and configuration. Respond to security breaches and infrastructure emergencies as necessary.
  • Design and develop tests to evaluate compliance with department policies and procedures
  • Take steps necessary to maintain and grow technical expertise with software and systems designed to evaluate and exploit vulnerabilities.
  • Take steps necessary to maintain and build upon technical understanding of hacking tools and techniques.
  • Oversee server, workstation and router build standards to ensure secure configuration of new dev
  • Pro-actively collaborate with vendors and suppliers as necessary to ensure department and company objective are me
  • Evaluate and revise as necessary disaster recovery plans and executables.
  • Document all support and maintenance activities as required.
  • Diligently and consistently follow department & organization policies and procedures 
POSITION REQUIREMENTS 
  • Minimum 5 years of Information Security / Cybersecurity experience in a corporate network environment.
  • Minimum 2 years of Data Loss Prevention (DLP) experience administering, refining policies and rules, or working directly with business leaders on outcomes.
  • Minimum 3 years of SIEM or log management experience defining log placement, event alerting, configuration management, or monitoring.
  • Security architecture a plus.
  • Possess two or more professional certifications in an Information Security / Cybersecurity field. Preferred certifications are CISSP, GSEC, CEH, Security+, CSSK, MCSE, CCNA.
  • Demonstrable expertise in the field of information security.
  • Strong, hands-on technical knowledge of up-to-date network, PC and server operating systems, including Cisco, Windows, and Linux.
  • Strong, hands-on technical knowledge of anti-virus and patch management systems, solutions and best practices.
  • Strong hands-on technical knowledge of routers, switches, firewalls & intrusion detection\prevention systems.
  • Strong understanding of data encryption standards, solutions and best practices.
  • Strong understanding and experience with LAN & WAN technologies including design and implementation.
  • Strong understanding of Internet standards and protocols including TCP\IP.
  • Strong understanding of data privacy practices and laws.
  • Demonstrable experience conducting in depth research into security issues and products as required.
  • Proven hardware troubleshooting skills.
  • Strong interpersonal, written, and oral communication skills. Highly self-motivated and directed with attention to detail.
  • Advanced analytical and problem-solving abilities.
  • Able to effectively prioritize tasks in a high-pressure environment. Experience working in a team-oriented, collaborative environment. Ability to work after hours and weekends as necessary.
  • Provide pro-active, effective technical mentoring to Security Administrators.
  • Ability to lift and transport moderately heavy objects, such as computers and peripherals.
  • BA or BS degree required.
or
this job portal is powered by CATS