---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Sr. Security Analyst
Location: Summit, New Jersey, United States
Type: Permanent F/T
Closing Date: 2006-07-23
Title: Global IT Security Analyst
Description:
This position plays the key role in supporting the implementation,
administration, and maintenance of the Global IT Security program.
Specifically, design and implementation of the preventive, detective and
corrective tools and procedures used to monitor the information security
posture of the company. This position provides technical expertise and
support in risk assessments and in implementation of new systems or
applications. Works closely with multi-disciplinary operations and engineering
teams to design secure infrastructure and applications. Works on security
projects as assigned to meet changing business needs.
Responsibilities:
o Performs operating system and application vulnerability assessments and
compliance auditing across multiple platform and application environments.
o Assist in the selection, configuration, and maintenance of security
software and utilities in line with the vulnerability assessment life-cycle.
o Develops and implements automated procedures to conduct assessments.
Performs maintenance of assessment tools used by the Global IT Security
department.
o Works with management to develop information security standards,
procedures and guidelines across multiple platform and application
environments.
o Reviews the development, testing and implementation of security policy,
standards and risk mitigation techniques.
o Provides technical expertise and support in risk assessments and in
implementation of information security planning and procedures.
o Works closely with operations and engineering teams to design secure
infrastructure and applications.
o Assist in or facilitates the implementation of protective and
mitigating controls.
o Tracks resolution of findings and prepares reports for management.
o Leads cross-functional Security Incident Response Team in resolving
security incidents.
o Assists in developing and maintaining an ongoing IT security awareness
and employee training program.
o Provides content related to critical patches to the departmental
web-site.
o Proactively keeps current on security issues related to business
activities as input to departmental policies & procedures.
o Evaluate, understand and provide recommendations for new technologies
as well as stay current with new functionality and features for existing
technologies.
o Mentoring of junior IT Security Analysts.
o Works on security projects as assigned to meet changing business needs
JOB REQUIREMENTS
---------------------------------------------------
Required Skills:
o Bachelor’s degree; CISSP, CISA, and other relevant certifications
a plus.
o At least 5-7 years direct experience in IT Security or IT Audit
function with a focus on security aspects of multiple platforms, operating
systems, software, communications and network protocols.
o Must have specific hands-on skills in vulnerability assessment,
penetration testing, patch analysis, intrusion detection and incident response
and common assessment tools such as Nessus.
o Must be able to demonstrate experience across a broad set of IT
technologies such as Windows, Unix, Exchange and Networking.
o Must be a self-starter, self-learner, able to work independently and in
a team.
o Requires excellent analytical ability, consultative, and communication
skills, strong judgment and the ability to work effectively in a
cross-functional, multi-disciplinary, team environment.
o Must be able to mentor junior team members as well as work with
cross-functional teams, multi-disciplinary teams.
o Must have excellent written and oral communication skills.
o Ability to mean sure and articulate technical risk assessment to a
non-technical audience.
Additional Suggested Qualifications:
o Multi-language skills a plus.
o Working knowledge on of network intrusion detection using Cisco IDS
products.
o Understanding of Checkpoint on Nokia platform and RSA SecurID
o Basic networking skills including the ability to read a packet trace
and understanding layer 2 & 3 routing protocols.
o Knowledge of Unix, Unix, PERL and SQL programming experience preferred
as well as Windows and Exchange
If qualified, please contact John Ahn: john@altaassociates.com
Job Order # 1048-JA
CONTACT
---------------------------------------------------
Please submit a Word Version Resume to:
john@altaassociates.com
Alta Associates
John Ahn
Senior Recruiter
john@altaassociates.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
