Information Technology Support Analyst

Trustwave Government Solutions is a leading provider of data security and compliance services to the U.S. Federal government. Our team of security experts, ethical hackers and researchers, enables our government partners to transform the way they manage their information security and compliance programs results to ensure each customer receives valuable outcomes at the best value. The agencies we work with benefit from our collaborative, innovative approach to meeting their unique needs. We listen carefully and respond nimbly. Our solutions combine industry best practices with customized technology to ensure quality and integrity.

The Information Security Advisor function provides a single point of contact for all security-related activities for designated customer accounts, and takes a key leadership role by providing extensive hands-on guidance in the development and implementation of security policies as related to designated accounts. The role extends further by providing hands-on consultative security expertise to the customer in making and recommending key decisions in the area of security, which may include security architectural work, operational support, and other duties in support of the customer. As it pertains to consultancy, management and focus varies greatly from account to account as there are variable customer and contractual requirements. The Information Security Advisor function possesses a combination of skills including: industry recognized certification (CISSP), general security expertise and project management skills.

Duties:

• Serve as a dedicated focal point for managing security or anti-virus incidents that occur in the customer's environment.
• Track and assist in the management of the resolution of reported operational security issues. Recommend actions, reviewing plans and monitoring progress of remedial actions. Manage to resolution security risks identified as a result of reviews and audits, changes in Trustwave or customer environment, changes in operating practices or processes, changes in technology etc.
• Offer executive-level presentations for the account or client management and proactively keep Trustwave senior leadership abreast of all account concerns.
• Oversee the implementation and management of operational security activities, processes and policies as required (e.g. Security Incident Management Process).
• Manages the implementation of the Security Agreement. Proactively drives the operational compliance on the account. Provide in-house consultancy on information risk management matters and advise on the implementation of security controls on the Account.
• Ensure that opportunities to improve security are identified. Research new security technologies and practices and recommend additional security services as required.
• On a regular basis (recommended at least monthly), meet with the account team to review security status, review any risks, issues, incidents, outstanding activities, current and planned changes.
• Provide security-related education to ensure security awareness and knowledge of customer applicable security policies and processes. Answers questions and concerns regarding customer applicable security policies and processes.
• Participate in change control (review and/or approval) activities for changes that may impact the customer's security posture
• Provide informal security assessments for Trustwave delivered processes or architectures to ensure that contractual requirements for information risk management and security controls are satisfied. Regularly review the delivery environment of the account to identify security risks to Trustwave or the customer.
• Provide a single point of contact to the account management and delivery teams for all operational security related activities for the customer account. Maintain and oversee relationships for all delivery organizations providing security support.

Skills and Knowledge Requirements:

Must have advanced skills/knowledge in several of the following areas:

Background:

• Information Security Operations
• Project Management
• Network Security Architecture & Administration
• Windows / Linux Administration

Understanding:

• Must have intermediate knowledge of common technologies (SIEM, EDR, FW, IDS/IPS, AV, SEG, DLP, etc)
• Broad understanding of threat hunting and incident response activities
• Must understand vulnerability management
• Must understand TCP/IP networking and routers/access control devices

Technology Experience:

• SIEM technologies (Splunk, QRadar, LogRythm, Sentinel, etc)
• Firewall technologies (Palo Alto, Fortinet, Cisco, Check Point, Juniper, etc)
• Endpoint security technologies (Microsoft Defender, Carbon Black, Cybereason, Cortex, Crowdstrike, etc)
• Microsoft security suite preferred (Sentinel, Azure, MDATP, etc)

Skills:

• Highly self-motivated
• Strong communication skills
• Strong project management skills
• Deadline and detail oriented
• Excellent customer service skills
• Self-managed/directed and team oriented
• Excellent analytical thinking and problem-solving skills

Required:

• Certification(s) in Security Sector (CISSP, GIAC, Security+, Cisco etc.)
• At least 5 year experience in Information Security or Networking

Education:

• A high school diploma or equivalent is required; a college or university degree is a plus.

This is a remote opportunity open to anyone legally authorized to work in the (country name). Guided by our flexible workplace philosophy, Moments That Matter, people gather in the office when in-person interaction is most impactful; full-time remote employees may be asked to travel occasionally based on the needs of the team and the business.

Trustwave is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.

Per Federal government contracting requirements, candidate must be a US citizen, as well as potentially pass and maintain a National Agency Check with Local Agency and Credit Checks (NACLC).

To All Agencies:

Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave’s policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.