IT Security Analyst

The Pegasus Agency - Parsippany, NJ

IT Security Analyst

Parsippany, NJ

The candidate will report to the IT Security Manager and provide support to identify and remediate security threats and vulnerabilities as well as be involved in other aspects of network and cloud security. IT Security Analyst will assist in the management of security solutions as well as the maintenance of enterprise wide Threat and Vulnerability Management Program.

Additional responsibilities include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines and procedures as well as conducting vulnerability audits and assessments. The IT Security Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals.

 

Essential Functions & Responsibilities

 

Operational Management

  • As a part of the SIRT team investigate and respond to alerts and work with stakeholders as necessary to resolve issues.
  • Under the supervision of Information Security Manager, schedule internal and external vulnerability scans and provide investigation and remediation efforts. Additionally, provide follow-up documentation as required by department and risk procedures.
  • Monitor corporate security solutions for efficient and appropriate operations.
  • Follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in remediation of critical information security incidents.
  • Participate in the design and execution of vulnerability assessments, penetration tests and security audits.

Acquisition & Deployment

 

  • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised cloud and network security solutions, improved security processes and the development of new attacks and threat vectors.
  • Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
  • Perform the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.

 

Strategy & Planning

  • Participate in the planning and design of enterprise security architecture
  • Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures)
  • Assist in the planning and design of Cloud and Network Security Threat and Vulnerability Management program

Essential Qualifications

Technical and Functional

  • Strong knowledge of Cloud security, client/server architectures, and networking
  • Strong knowledge of current and evolving cyber threat landscape
  • Significant theoretical and practical knowledge in the following areas:
    Unix, Linux, Windows, etc. operating systems, well-known networking protocols and services (FTP, HTTP, SSH, SMB, LDAP, etc.), exploits, vulnerabilities, network attacks
  • Proficiency, and experience, using information security tools and related methodologies.
  • Experience investigating security incidents.
  • Knowledge of specialized telecommunication techniques such Virtual Private Networks, encryption methodology and their associated technologies.
  • Knowledge of security frameworks e.g., HITRUST
  • Proven analytical and problem-solving abilities.
  • Ability to effectively prioritize and execute tasks in a high-pressure environment.
  • Good written, oral, and interpersonal communication skills.
  • Ability to conduct research into IT security issues and products as required.
  • Ability to present ideas in business-friendly and user-friendly language.
  • Highly self motivated and directed.
  • Keen attention to detail.
  • Team-oriented and skilled in working within a collaborative environment.

     

    Experience Required

  • 3-5 years of technical experience in the cloud and infrastructure security and architectures

     

    Required Educational Level

  • Bachelor's degree in Information Technology. An equivalent combination of education and work experience may be taken into consideration in lieu of a degree.

 

Certifications required/preferred

  • At least one or more of the following certifications:
    • GPEN
    • GCIH
    • CEH
    • CISSP
    • CCSP

 

 

 



Posted On: Tuesday, December 8, 2020



Apply to this job