Tuesday, December 29, 2015

Information Security Analyst

Title- Information Security Analyst
Location –Costa Mesa, CA
Duration- 4 -6 Months  Contract



 (Information Security Analyst) that needs to be filled temporarily until we find a permanent candidate. This is a more junior level role. This will likely fall into the Data Security Administrator 1 or 2.

Summary
The Information Security Analyst I is a cross-functional business and technology auditor, responsible for ensuring corporate regulatory compliance, risk remediation and vulnerability management, and maturing business processes.  The Security Analyst may conduct reviews of network infrastructure, systems infrastructure, application configurations, and software code reviews.  
 Key Responsibilities
  • Assist in monitoring the configuration, deployment, and integration of enterprise network technologies such as access control, routers, switches, load balancers, firewall, logging, and WIFI. Similar responsibility for monitoring security tools such as VM, IPS, SIEM, packet analysis, and DAM desired. Experience with remote access infrastructure into various technology platforms supported across the organization. This role will work with the Network Operations team and IT teams, among others, and ensure that new devices are properly monitored, registered and reporting to NOC/SOC
  • Ability to monitor configuration, deployment, and integration of security technologies associated with web applications desired. This includes web application firewalls, dynamic and static analysis applications and services, and occasional code review
  • Maintain Infosec procedures and report on deployed devices according to the standard build
  • Provide cross-training for Ops teams and SOC so that standard performance monitoring and fault management can occur.
  • Participate in cross-functional project teams along with individuals from IT, Architecture and Development to design and implement security solutions as prioritized by management
  • Advise, recommend, and report on risk assessment for site compliance/safety gates for review by Risk Management team prior to implementation.
  • Maintain adequate compliance documentation presentable for external and internal audits
  • Domestic or international travel may be required

Qualifications
 Qualifications/Experience
  • Excellent understanding of network and technical security controls required
  • Desired Work Experience 6-8 years with 2 years or more of Information Security experience
  • Strong IT / IT Security / Architecture background.
  • Cloud Technology and Security experience desired
  • Good understanding of application security
  • CISSP certification (or GIAC Gold or Platinum) desired
  • Knowledge of IT Risk and Security governance
  • Understanding of risks in banking/ financial services sector preferred
  • Proven ability to provide solutions to a variety of technology problems of moderate scope and complexity

  • Specific Knowledge
Networking hardware - routers, switches, load balancers, etc.
Next generation firewalls and application identification and tuning
Access control using AD, LDAP
Next generation transparent remote access solutions
WIFI scanning and reports
Content Load Balancers
SSL VPNs 
IPS technology
SIEM, SIM, or SEM
Vulnerability Management & Vulnerability Scanning
Security packet analysis
Working experience with IT policies, procedures, and standards
Basic experience with vendor management and product evaluation
Web proxies
Web Application Firewalls and XML Gateways
Application execution control

  
Santy Kumar | TalentBurst, Inc.
Boston | San Francisco | Miami | Milwaukee | Toronto | New Delhi | Bangalore
Work: (508) 628-7589| Fax: (508) 319-3065 | Email: santy.kumar@talentburst.com
679 Worcester Road | Natick, MA 01760 | www.talentburst.com