---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: Jr. Security Analyst
Location: Malibu, California, United States
Type: Permanent F/T
Closing Date: 2007-05-31
DUTIES: Review information security events from the Intrusion Detection Systems
(IDS); track trends, create incidents, review generated blocks, and escalate
incidents as required; maintain the IDS rule set and systems; assist with the
construction of custom detection rules and remediations; perform and improve
reporting, monitoring, and alerting from the system; provide strong customer
service on data center firewall change requests; act as a consultant on denied
requests and a service provider on allowed requests; review data center
firewall change requests daily to assess potential risks; implement and
document changes according to change control procedures and security
guidelines; review existing firewall rule sets for problems, including
complexity and inactive rules; take and communicate appropriate actions; work
collegially with Server Engineering and Network Services to plan for system
security and timely service; monitor and report on all firewall systems; review
and
analyze logs and log summaries daily for trends indicating security issues;
create incidents for significant issues and provide summaries for potential
issues; improve log monitoring, alerting, and reporting; perform periodic
vulnerability scans on specified systems and networks within established
guidelines; perform preliminary analysis, remediation, and escalation according
to vulnerability scanning guidelines; provide first level consulting for
customers requiring remediation; track, analyze, and report trends per system
and make recommendations; improve automation, self-service, and reporting in
related systems; participate as a member of the Information Security team in
security system design, implementation, maintenance, operation, improvement,
and automation; act as a member of the Information Security Computer Incident
Response Team when required; assist with preparing and delivering security
training to IT professionals and University knowledge workers; assist IT pr
ofessionals in accessing and using Information Security self-service
applications such as checkid, checkvpn, checkfirewall, and unblock; improve
documentation for Information Security systems and procedures; review and
update documentation for interfacing with Information Security, such as Help
Desk playbooks; perform other duties as assigned.
JOB REQUIREMENTS
---------------------------------------------------
QUALIFICATIONS/SKILLS: Bachelor's degree from an accredited Institution; at
least two years of experience working in an information technology related
field in a technical capacity; experience with Snort IDS software preferred;
ability to accurately understand IDS rules in Snort syntax with a reference
manual; facility with retrieving and understanding records from Windows Event
Logs and Unix Syslog; practical and thorough knowledge of TCP/IP networking
protocol; facility with a TCP/IP packet capture and analysis tool and facility
with open source or Cisco IP firewalls; formal study or related certification
preferred; working knowledge of both Windows and Unix-like operating systems;
significant experience with Solaris, AIX, and Windows Server 2003 or later
preferred; simple programming ability to maintain and improve existing systems;
SQL data retrieval, simple perl, and shell/batch file scripting ability;
facility with secure coding in PHP preferred; ability to code .Net or
JSP applications a plus; knowledge of a body of fundamental security concepts
required, e.g. "Principle of Least Privilege" with formal study or related
certification preferred; ability to read and understand technical manuals for
security products; ability to write concise and accurate technical procedures
and reports in English; able to analyze a security system or set of procedures
and represent them clearly and accurately in writing; strong ability to
collect, analyze, and graph data for inclusion in reports; experience with
several of the following security assets preferred: Cisco PIX, FWSM or ASA
devices, Packeteer Packetshaper, Cisco IOS ACL, Sourcefire IDS; well organized,
creative, self-starter, and team player; friendly demeanor with a strong
customer service orientation and excellent communication skills.
CONTACT
---------------------------------------------------
To view the official information about this position and to apply please see
the posting for "Security Analyst I" at http://jobs.pepperdine.edu -- please
note principals only!
Pepperdine University
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
