Stefanini is seeking a Security Analyst to support our Oil Additive Manufacturing client in Richmond, VA 23219. Are you a self-starter, excellent communicator and well experienced in cyber security? If so, this position is for you.
This role will help provide cybersecurity and compliance to existing systems. It will provide direct analysis, execution and mitigation of all technical activities related to cybersecurity.
Recommend and execute proactive activities to protect the Enterprise Computing environment
Certificate and Encryption systems
Least Privilege enforcement
Research and mandate patching on all hardware; servers, networking, clients, IOT
Design and Implement Role-based management in user applications
Management of Cloud and 3rd Party Vendor certification and due diligence
Analyze dataset from multiple tools and act on various Security Events, Alerts and Incidents
Triage to align with pre-defined risk based models
Implement, Monitor and Administer various Enterprise Security Tools, including:
Network, Server and Database access monitoring and control
Various Malware and APT detection and protection products
Support compliance and audit activities
Control and narrative analysis
Communication and Accountability Enforcement for Control Owners
Gathering and producing demonstration materials
Creation and Implementation of mitigating Controls
Recommendation of associated Business Processes
All of the following:
6 years of experience in Information Technology which must include:
2 years in a role that is technical network or systems administration
2 years in a role that is related to security or compliance
2 year degree (4 year degree heavily preferred)
Any one of the following:
CEH Certified Ethical Hacker (preferred)
CISSP Certified Information Systems Security Professional (preferred)
Security Product vendor certification
CompTIA Security + Certification or similar
2 year Degree in IT security or related/equivalent coursework
Any one of the following:
MCSE/MCSA or similar Microsoft certification (current or expired)
CCNP/CCNA or similar networking certification
Similar IT Vendor technical certifications or deep technical experience in IT systems.
Requires Expert Knowledge of:
Any one Compliance Framework; prefer COBITS, NIST or ISO 270001/2
Strong knowledge is expected of:
Various hacking techniques
Microsoft Operating Systems
Basic Networking, Ethernet and OSI model
Demonstrates a customer service orientation in direct execution and in leadership.
Demonstrate effective oral and written English communication skills.
Demonstrate Strong Decision Making and Leadership skills.
Must be adaptive, flexible and self-motivated.