Sr. Security Analyst

Twitter Facebook
Location
Provo, UT
Job Type
Direct Hire
Date
Dec 01, 2017
Job ID
2546796
 Sr. Security Analyst
 
Job Summary
The responsibilities of this position include security incident monitoring, technical evaluation, and response to information technology assets that are possibly compromised; managing and processing access to IT resources campus-wide; granting user information access rights; process reviews of access and security functions, ensuring they are in compliance with security policies; vulnerability assessments; network and firewall rule creation and analysis; forensic investigation; preparing and presenting security awareness training and security support documentation. This position will also perform functions such as wireless security, penetration testing, forensic investigations, and expert witness responsibilities. The senior security analyst also provides leadership and guidance to other employees.
 
Skills and Experience required:
  • Knowledge of and experience with system audit, profile review, and regulatory controls, including Payment Card Industry (PCI)
  • Skill in and knowledge of role-based access methodologies
  • In-depth understanding and experience in security monitoring, incident response, and forensic analysis
  • Understanding and experience in network and firewall technologies and management
  • Ability to define security policies and procedures for all information technology (IT) resources
 
Certifications:
The following certifications are highly preferred.
  • Certified Information Systems Security Professional (CISSP)
  • Certified Security Forensic Investigations
  • Certified Penetration Testing
  • Security specialization certification (Wireless, OS system, Network Security)
  • ITIL Foundations certification
  • Certified Information Systems Auditor (CISA), GSEC certification, or equivalent
 
General Education/Experience Requirements:
To perform this job, you will need a Bachelor's degree (preferably in MIS, CS, or comparable field) plus two years’ experience, or an equivalent combination of education and experience. Experience involving actual penetration testing will greatly increase your efficacy in this position. CISSP certification desired.
 
Essential Functions:
  1. Incident Monitoring, Response, and Forensics
  2. Access Administration
  3. Security Awareness and Training
  4. Security Process Investigation, Review and Audit
  5. Project Assignments
  6. Vulnerability Assessments
  7. Network and Firewall rule creation and analysis
  8. Penetration Testing 
 
22 vacation days, 12 sick days, 12 calendar holidays, a pension, 401k matching, no-cost retirement savings program, and excellent medical/dental benefits. Open salary and willing to relocate.