Security Analyst

We are currently seeking a Security Analyst to join our team. This position is primarily responsible for two core Enterprise functions, the day-to-day operations of in-place security solutions and the identification, investigation and resolution of security breaches detected by those systems.

Responsibilities

• Maintains up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.).
• Maintains operational configurations of all in-place security solutions as per the established baselines.
• Monitors all in-place security solutions for efficient and appropriate operations.
• Reviews logs and reports of all in-place devices, whether they be under direct control or not, analyzes and interprets implications of activity and devises plans for appropriate resolution, if needed.
• Participates in investigations into problematic activity.
• Participates in the creation and/or maintenance of new security solutions as well as policies, standards, baselines, guidelines and procedures.
• Participates in the design and execution of vulnerability audits, assessments, penetration tests and security audits.
• Maintains knowledge of Insperity s enterprise security goals, policies, procedures and guidelines and endeavors to uphold those goals.
• Provides on-call support for end users for all in-place security solutions.
• Assists in the accomplishment of Insperity Company goals.
• Helps other employees to accomplish Insperity Company goals.
• Performs other duties as may be assigned by department supervisor.
• Participates in the Disaster Recovery plan as required.

Qualifications

• Bachelor s Degree in the field of Computer Science or a related field and/or equivalent work experience is required.
• Three to five years of related work experience is required.
• Experience in the definition of security requirements and architecture, working with various security forensics tools, security monitoring and compliance tools and best practice incident response procedures.
• Solid understanding of various security exploits, TCP/IP and security related technologies and protocols.
• Knowledge of risk assessment methods, information security procedures and secure remote access processes.
• Strong working knowledge of network firewalls, IDS/IPS systems, information security practices and trouble ticketing procedures.
• Experience or understanding of various compliance regulations such as HIPAA, Sarbanes-Oxley and PCI.
• Proven analytical and problem solving ability.
• Ability to interface effectively with other internal or external organizations regarding incident response situations and training.
• Ability to work effectively within formal and informal teams inside and outside the technology organization.
• Must have strong written and verbal communication skills and the ability to maintain effective work relations with those encountered in the course of employment.