Infrastructure Security Analyst

White Plains, NY

Responsibilities

 

  • Carry out the full vendor management process, from opening and periodical vendor vetting, risk analysis of the prospective purchased solution, and security amendments in the agreement
  • Improve, support and uphold the web application vulnerability program with Qualys or Acunetix.
  • Timely response to security threats by initiating appropriate requests as well as managing team’s ticketing queue
  • Project management skills and capability of managing multiple projects simultaneously as well as using standard tools
  • Experienced with information security metrics, Excel dashboards or other data analysis tools
  • Provide metrics and dashboards on all activities performed and documentation for status reports
  • BCP / DR extensive knowledge – plan revisions, maintenance, testing
  • Support and respond to audit procedures and findings. Ability to effectively adapt to rapidly changing technologies and apply them to business needs.
  • Strong knowledge and understanding of business and business processes; strong business planning skills.
  • Familiarity with Data Privacy legislation (GDPR, CCPA and pending law) and understanding of Data Privacy concerns within the business environment.
  • Knowledge of pertinent legal controls (PCI, HIPAA); understanding of compliance requirements and ability to convey that understanding to users, support staff and Management.
  • Champion security policy and “best practices” within the business environment.
  • Solid teamwork and interpersonal skills and ability to communicate with customers, employees and management.
  • Strong oral and written communication skills.
  • Demonstrated competency in developing efficient and effective solutions to diverse and complex business problems.

 

Requirements

 

  • Bachelor’s degree in Computer Science, Information Systems, Business Administration, or other closely related field required. Or equivalent experience.
  • 5+ years of experience with system security is desired.
  • 1 to 2 years of experience in the administration of IT devices and networking. Network Administration and Network Security experience a plus
  • CompTIA – Security+ preferred
  • Deep understanding of Windows security, Active directory, Group policies, Network protocols.
  • Rudimentary hands-on software and hardware configuration experience.
  • Capability to interpret, understand and remediate penetration test results.
  • Vulnerability management lifecycle skills
  • ICS (Industrial controls systems), SCADA security experience
  • Deep understanding of PCI DSS, HIPAA, GDPR and Data privacy requirements and control mapping
  • Business Process understanding (Distribution industry preferred)
  • Understanding of Application flow (ability to interpret processing in a network computing environment) and Application security
  • Excellent MS Excel skills on multiple topics: pivot tables, graphs, analysis, macros etc.

 

 

 

 

Note: Qualified candidates will be contacted within 2 business days of application. If an applicant does not meet the above criteria, we will keep your resume on file for future opportunities and may contact you for further discussion.

Date Posted 12/17/2019
Salary $55.00/hr






(2MB Max; allowed file formats: doc, docx, pdf, pptx, txt)



characters left