Let’s Connect Today!

NextGen Person

Security Analyst in Fenton, MO at NextGen

Date Posted: 7/11/2018

Job Snapshot

  • Employee Type:
    Full-Time
  • Location:
    Fenton, MO
  • Job Type:
    Technology
  • Experience:
    Not Specified
  • Date Posted:
    7/11/2018

Job Description

This role will interfaces with various IT professionals and Maritz business units providing effective security solutions to enable the business while maintaining compliance and best practices. In this role you will develop and implement measures to maintain regulatory compliance. Develop relationships to successfully support business units with outside suppliers for client audits. Develop and maintain comprehensive vulnerability management system and standards.


Scope


Support Security Health - Raise awareness and assist in the enforcement of security policies and regulatory requirements. Provide support to the Security Operations and Incident Response Teams. Assist with security mitigation and remediation efforts as needed. Improves efficiency of security functions, automates work processes and works collaboratively with IT operational personnel to accomplish a balance of business and security objectives. Maintain areas of an ISO 27001 and PCI DSS-based information security program to enhance/implement program areas and processes. Assists Information Security Compliance activities in support audit and assessment activities, including customer, PCI, and internal audit reviews.


Reporting and Working Relationships


Reports to appropriate level of management within Maritz IT Services (MITS). Works within the Cyber Security support team to provide solutions to business unit stakeholders and other functional areas. As the Subject Matter Expert (SME) in these environments, considerable latitude is granted for independent action.


Job Responsibility


Time Spent (%)




    • Provides security expertise - Provide guidance for selection of third party security service providers/vendors. Identify and evaluates risk, vulnerabilities and threats to systems and applications. Interfaces with network and server administrators, desktop support staff, IT staff, developers, and non-IT departments on security issues and requirements. 35%

    • Participate in vendor product evaluations and recommendations. Evaluates software for threats and vulnerabilities to ensure a secure environment. 25%

    • Strong relationship building and communication skills with leadership, peers and customers. 25%

    • Security Analysis - Gather information and collaborate with IT and non-IT staff to assess and solve security issues for networks, servers and applications. Analyze business needs and researches security solutions. 15%

    • Qualifications

    • 3-5 years of Information Security Engineering/Architecture Experience

    • Bachelors degree or equivalent experience

    • Professional Architecture and or Engineering experience required in a minimum of 3 of the following sub-specialties: Firewall deployments, IDPS, DLP, EPP, Vulnerability Management, Threat Intel, Threat Validation, Threat Modeling, Incident Response, OS Hardening (Windows/Linux), Web Applications, Risk Management.

    • Experience and knowledge of security/access control technologies such as Microsoft Active Directory, ADFS, SAML, SLDAP.

    • Working knowledge of security compliance requirements such as ISO27001, NIST, PCI, SOX, and HIPAA.

    • Certifications are nice to have; should have a committment and interest level to work towards relevant ones.Ability to Learn and AnalyzeOral CommunicationQuality-of-Service OrientationWritten Communication

    • Team Orientation/Management

    • Planning & Organizing

    • Initiative

    • Main Competencies


    • Ability to Learn and Analyze


      Initiative


      Oral Communication


      Planning & Organizing


      Quality-of-Service Orientation


      Team Orientation/Management


      Written Communication