.

Information Security Analyst

The Information Security Analyst develops, monitors, and executes security controls, defenses, and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate internal and external systems. Works with cross-functional operational groups to establish security standards and best practices for hardware and software maintenance and application development. Monitors effectiveness of security policies to control physical and virtual access to systems. Establishes and coordinates appropriate measures for incident response. Recommends, plans, and manages steps necessary to improve information security.

Core Responsibilities

  • Work with appropriate teams to manage connection security for all company production systems, local and wide area networks, and all internal corporate systems.
  • Ensure the integrity and confidentiality of information residing in all production and corporate databases, servers, workstations, and other systems.
  • Monitor internal and production network traffic and logs for unusual or suspicious activity. Interpret activity and implement plans for resolution.
  • Develop and execute information security policies, procedures, and best practices.
  • Assess need for any security reconfigurations and work with the appropriate teams to execute them as required.
  • Keep current with emerging security alerts and issues.
  • Propagate security awareness among employees, contractors, and vendors.
  • Recommend, schedule, and assist in performing security improvements, upgrades, and/or purchases.
  • Work with internal teams to maintain and audit compliance (FERPA, PCI, etc.).
  • Act as subject-matter expert for internal and external resources on all information-security-related inquiries.
  • Forensic analysis of security events.
  • Work independently with minimal supervision.

Required Knowledge and Experience

  • 5+ years verifiable experience in an information-security-related position supporting a complex web-based production environment.
  • Broad hands-on knowledge of firewalls, switches and routers, intrusion detection systems, anti-virus software, data encryption, and other industry-standard techniques and practices.
  • In-depth technical knowledge of operating systems and open-source products and tools, including Linux, BSD, Solaris, Windows, Mac OSX, MySQL, Apache.
  • Diverse industry knowledge of security tools and best practices.
  • Strong knowledge of TCP/IP and other network protocols, including their vulnerabilities.
  • Strong organizational skills and excellent attention to detail.
  • Participation in 24x7x365 on-call rotation.
  • Customer-focused attitude and commitment to quality.

Education

Degree in networking, computer science, information technology, and/or industry-recognized security certifications (CISSP, CCISP/PCIP, CCSP, GIAC)

Please send resume and salary requirements to jobs@webassign.net. No phone calls please.

WebAssign is proud to be an EEO/AA employer M/F/D/V

Contact Us :: About Us :: Employment :: Partners :: Privacy :: Terms of Use :: Security :: Accessibility :: Site Map

WebAssign® is a registered service mark of North Carolina State University under license to Advanced Instructional Systems, Inc.

Copyright Information © 1997–2003 North Carolina State University. Portions © 2003–2011 Advanced Instructional Systems, Inc.

Various trademarks held by their respective owners.

Main Office: 1791 Varsity Drive, Suite 200, Raleigh, NC 27606 | Tel (919) 829-8181 | Fax (919) 829-1516