[SJ-JOB] Sr. Security Analyst, Austin, US

---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------


JOB DESCRIPTION
---------------------------------------------------
Position:       Sr. Security Analyst
Location:       Austin, Texas, US
Type:           Permanent F/T
Closing Date:   06/25/2005

Responsible for assisting in the administration of information technology 
security program, concentrating on technical issues. Develops and performs 
technical vulnerability risk assessments, security system design, and 
scan/penetration analysis and testing. Performs independent research, and 
evaluation of emerging security-related technologies. Assists in establishing 
business direction related to customer security issues. 

JOB FUNCTIONS
•Develops and performs technical vulnerability risk assessments to 
determine overall security posture of client networks. 
•Administers and evaluates security incidents as they occur and provides 
research and proper responses in a timely manner 
•Develops and evaluates security system designs to determine compliance 
with IT standards 
•Performs scan/penetration analysis and testing of various government 
entities using automated tools 
•Evaluates information technology security project implementations and 
documents best practices.
•Monitors current and proposed national and international emerging 
security technology and standards. 
•Provides advice and consulting services to clients to assist in 
implementing security programs 
•Represents the company on technology committees and taskforces 
•Understanding of the Health Insurance Portability and Accountability Act 
(HIPAA) 
•Researches and evaluates new and emerging security technologies and IT 
services 
•Performs related duties as assigned 



JOB REQUIREMENTS
---------------------------------------------------
QUALIFICATION REQUIREMENTS

Education / Certification:
•Graduation from an accredited four-year college or university. A degree 
in information systems, computer science, telecommunications or related field 
preferred.
•Two years related college course work plus additional two years related 
experience may substitute for degree. 
•GIAC, CISSP and/or CISA preferred
•CCNA, CCNP or CCIE preferred

Experience and Training:
•A minimum of three years experience in information technology security.
•A minimum of two years experience in performing network security audits 
and penetration tests.
•A minimum of two years background with IT security in telecommunications, 
Internet applications, electronic commerce or electronic data interchange 
projects.
•A minimum of one year experience documenting technical analysis and 
making oral and written presentations related to IT security. 
•Experience with intrusion detection systems 
oSnort, ISS RealSecure, Tripwire and others
•Experience with network vulnerability scanners 
oeEye Retina, Nessus, ISS Internet Scanner and others
•Experience with the Unix/Linux operating system 
oSun Solaris, HP-UX, OpenBSD and others
•Experience with multiple network firewall solutions 
oRaptor, Checkpoint FW-1, Cisco PIX and others
•Experience with Cisco products and IOS
•Supervisory or project management experience in a technical environment. 
•Experience reviewing IT security technical standards.
•Analyzing, recommending, and developing enterprise wide security 
policies, standards, and guidelines.
•Experience analyzing, recommending, and developing enterprise wide 
security policies, standards, and guidelines.
•Hands-on experience with more than one technical architecture or vendor, 
preferred.
•Experience with state and federal information resources technology 
regulatory issues and processes preferred.
Knowledge, Skills, and Abilities:
•Knowledge of Intra/Internet/Extranet security issues and architecture 
•Thorough knowledge of access control and Authentication systems.
•Must have knowledge of encryption technologies and corresponding legal 
restrictions 
•Knowledge of data communications, networking, computer programming and 
systems analysis 
•Knowledge of the principles, practices, and techniques of management 
controls and information resources management 
•Understanding of limitations and capabilities of computer systems 
•Knowledge of Business Continuity Planning and Disaster Recovery Planning
•Willingness and ability to establish and maintain effective working 
relationships with others 
•Well-developed written and oral communication skills 
•Ability to prepare issues papers and research reports 
•Ability to prepare and deliver presentations 
•Ability to develop and interpret standards, policies and procedures 
•Ability to work effectively with various levels of professionals 
including executive management, mid-level supervisors and line employees 
•Ability to interpret technical information relating to information 
resources technology and to communicate that information in a non-technical 
manner both verbally and in writing 
•Willingness and ability to work a flexible schedule when required 
•Willingness and ability to comply with all health and safety rules, 
regulations, and standards 

WORKING CONDITIONS 
•Regular and punctual attendance 
•Frequent use of personal computer, copiers, printers, and telephones 
•Frequent sitting, listening, and talking 
•Frequent work under stress, as a team member, and in direct contact with 
others 
•May be subject to criminal background check 



CONTACT
---------------------------------------------------
Please send resume to jobs@hbmediagroup.net

Sheila Kuschke
Admin Asst
HGMB, Inc
sheila.kuschke@hbmginc.com



---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for 
searching and managing job opportunities and resumes.

http://www.securityfocus.com/jobs