---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Sr. Security Analyst
Location: New York City, New York, United States
Type: Permanent F/T
Closing Date: 2007-05-27
Overview:
* Evaluate, monitor, contribute & report on several information security work
streams within the firm- Responsible for assessing security vs. standards with
regional and global UNIX teams to maintain a secure environment and that
server, O/S and application builds are implemented correctly and consistently
* Perform regular scans of the infrastructure, notify/escalate with teams,
document findings and provide solutions to close out issues
* Ensure appropriate risk analysis, monitoring, documentation and mitigating
controls are in full compliance for all Production & Development systems, O/S
and applications
* Evaluate and track technical (risk and security) issues for projects and
report exceptions to Information Security and relevant teams
* Policy review and recommendations, Incident Response (CSIRT), Forensics and
Investigations, promoting Security Awareness and assist with Audits
Responsibilities:
* Manage information security projects in accordance with established policies,
guidelines and procedures (30%)
* Assess risks, threats and vulnerabilities associated within the architecture
design, application, O/S and complex infrastructure (20%)
* Identify security requirements, monitor and track security access rights and
control systems (20%)
* Evaluate security infrastructure components for anomalous and unknown
behavior (15%)
* Assist in security awareness and coordinating contingency tests (10%)
* Identify security sources and trends in financial industry (5%)
JOB REQUIREMENTS
---------------------------------------------------
Experience:
* Bachelors degree in Information Systems or related field
* Strong knowledge of security operating systems: UNIX- Solaris & Red Hat Linux
(Windows helpful)
* 5+ years hands-on information security, audit, and risk assessment experience
in multiple security domains
* Firewall configuration and monitoring experience a plus (to perform regular
firewall audits and reviews)
* Prior experience utilizing Symantec ESM and ITA (preferred)
* Financial Services industry experience (preferred)
Certifications:
* CISSP preferred. GIAC and CCNE welcomed.
* Technical certifications for UNIX preferred
Skills:
* Capability to understand, communicate, document and resolve security
issues/solutions
* Reliable self-starter requiring minimal oversight for day to day
responsibilities
* Good communication skills, especially escalation of risk issues
* Familiar with Compliance and Regulatory requirements and standards
* Able to learn independently, be proactive and operate in matrix team
* Operate under pressure and manage multiple priorities/deadlines
CONTACT
---------------------------------------------------
Send resume in Word compatible format as attachment to email reply. No cover
letter needed. Strong candidates will receive response within 48 hours.
confidential
Don Cornell
Recruiter
dwc@securityexecs.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
