It Security Analyst Specialist Jobs

Provides expert advice on applications and systems infrastructure, security, design, risk management, and communication strategies to FFM leadership.

Research new systems technologies and evaluate vendor offerings as they may benefit the FFM program system and security operations.

Coordinates the design, development, integration, testing and implementation of Cloud computing infrastructure with multiple stakeholders.

$99,908 - $129,878 per year

- Is thorough when performing work and conscientious about attending to detail.

You MUST apply through USAJOBS by 09/18/2023 to be considered.

Experience and understanding of security tools (Vulnerability Management, Endpoint Protection).

Thoroughly understand software installations, systems monitoring and troubleshooting, account management, and overall efforts to minimize system downtime.

Bachelor’s degree or equivalent in Computer Science, Information Systems Management, Information Technology or other related discipline preferred.

Identify and define system security baselines and system requirements.

Understand system security vulnerabilities and associated threats, and assess the overall security risks to the system.

Assist with projects involving cloud, operating systems, applications, and database and security issues and requirements.

•Experience in configuring and customizing the Splunk Enterprise Security for SIEM capabilities.

Certifications - Splunk certifications must

•Detailed understanding and strong skill set in operating and working with the Splunk toolset

•Experience in developing Splunk Dashboards and configuring alerts for notable events.

•Experience in implementing Advanced Threat Analytics using Splunk Enterprise Security

•Experience with a scripting language (Bash, Python)

Preferred experience, education, and qualifications:

1+ years of security experience within a banking environment.

Duties and responsibilities of the job include the following (but is not limited too):

Work with the CDO and the Information Security team to define workflows, controls and enhancement of the IAM platform.

Communicate regularly with users and other IT members regarding status, provisioning, etc.

Thoroughly document all activities according to relevant policies and standards.

Bachelors Degree in Information Systems or related field and three (3) years of experience in security systems technologies OR

Masters Degree in Information Systems or related field and one (1) years of experience in security systems technologies OR

Masters Degree in Information Systems or related field and ISACA, SANS, ISC(2), or CEH Certification or related security certification

Protects against data loss and service interruptions by researching new technologies that will effectively protect the corporate network and applications.

Analyzes IT security logs, reports, and other data sources to ensure that all applications are functional and secure.

Perform other duties as required.

Must possess excellent verbal and written communication skills, and be proficient with discussing IAM concepts with non-technical users

Strong knowledge and understanding of various Single Sign On (SSO) and Multi-Factor Authentication (MFA) concepts

Strong working experience in administration and support of IAM products - Okta preferred

Experience with Agile/Scrum based project execution

Experience working with end users to solve access issues

Effective communication and collaboration skills

Assist with the management of security aspects of the information system

Provide configuration management for security-relevant information system software, hardware, and firmware

Experience in the following areas: current security tools, hardware/software security implementation

Provide support to the ISSM for maintaining the appropriate operational Cybersecurity posture for a system, program, or enclave

Assist in maintaining appropriate operational security posture for an information system or program

Provide support to the Government on all matters (technical and otherwise) involving the security of the information system

Strong written and verbal communication skills. Demonstrates an outstanding “customer orientation” to service management

Assists IT Security administrators in management and operational configuration of IT Security systems and controls

Basic understanding of computer security concepts including Identity & Access Management, Network Security, Application Security, and Incident Management

2 years of experience supporting IT security systems preferably in a large enterprise, and/or commensurate combination of education and experience.

Prefer certification related to Information Security

Respond to questions and suspected incidents through Stantec's IT ticketing systems

Provides users and management with technical support on matters related to access control.

Conducts penetration testing to find vulnerabilities.

Implements security improvements by assessing current situation, evaluating trends anticipating requirements.

Broad understanding of Information Security as a field, including experience evaluating and implementing security policies and practices.

Knowledge of current and emerging threats/threat vectors.

Knowledge of security framework (NIST SP 800-53, ISO 27001, NERC, etc.).

program management experience required. In lieu of a degree, a

of five (5) years of program management experience will be considered.

management certifications are desirable but not required (e.g. PMP,

Utilizes improvement and program management expertise to ensure programs deliver

Responsible for the management, development, testing, auditing, and ongoing

Assists with the day-to-day incident and problem management areas supporting the Business

If you are relying on your education to meet qualification requirements:

Coordinate with IT Director to facilitate the patching and mitigation of identified vulnerabilities for both hardware and software systems.

Excellent customer service skills and the ability to deal with a wide variety of people tactfully and courteously;

Structured writing skills related to documentation, policies and compliance work;

Strong organizational skills and the ability to handle multiple assignments with frequent interruptions;

Strong collaboration skills with IT and other court staff;

Working experience performing security operational activities, such as performing security investigations, data classification, IAM, PAM, Incident Response, and vulnerability management.

Conduct and coordinate vulnerability management activities.

Managing Vulnerability, Privileged Access, and Identity Access Management programs

Educate users about information security requirements, policies, and procedures.

Experience securing O365 and public cloud applications, data, and systems.

3-5 years of relevant security engineering and/or operations experience.

Competencies, Knowledge, Skills and Abilities

Work with functional areas to refine requirements as needed based on future ERP system capabilities and vendor recommendations.

Benefits - We care about your well-being.

Gather and document security and access control requirements.

Meet with functional areas to understand desired controls, segregation of duties and data access requirements.

Participate in discovery activities with the ERP vendor(s) and share documented requirements.

Organizational and time management skills, attention to detail, and the ability to manage priorities

Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the ability to unit test remediations with exploits tools

Familiarity with incident response and crisis management processes

Strong network security architecture skills are required Experience with computer network penetration testing and techniques

Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact

At least eight years of experience in systems, network, and/or application security with a focus on network and application security

Prepare and present security reports and recommendations to management.

Monitor and analyze security alerts, events, and incidents to identify potential security breaches or vulnerabilities.

Collaborate with cross-functional teams to identify security requirements and provide recommendations for improving security posture.

Stay up-to-date with the latest security threats, vulnerabilities, and industry trends.

2+ years of experience in information security or a related role.

Relevant certifications (e.g., CompTIA Security+, CEH, Certified Information Systems Security Professional) are a plus.

Knowledge and understanding of Access Management processes, policies, and procedures.

Knowledge of IT Security, Risk Management, and best practices.

Automation and unique role creation within Identity and Access Management (IAM) tool to streamline user access provisioning and management.

Perform Incident Management as needed.

Manage and maintain IAM tools and Phishing tools. Ensure proper configuration and optimize their performance.

Proactive research and analysis of security vulnerabilities and gaps

3 - 5 years of experience is preferable.

·Validate respective SSPs to ensure NIST control requirements are met.

·Assist team members and vendors with proper artifact collection to satisfy assessment requirements.

·Experience working independently and in a team environment

·Strong written and verbal communication skills including the ability to explain technical matters to a non-technical audience

Only local Candidate needed C2C is fine and But candidate must be living in Michigan.

Hybrid/Flexible : Work at home and use the office as appropriate for in-person collaboration.

4 Year/Bachelor's degree or equivalent work experience

Monitor, defend and protect perimeter interface for malicious network traffic.

Responding to host based alerts

Performing network analysis of egress and ingress traffic.

Conduct real-time analysis using the SIEM and other security analytics tools.

Recent experience providing subject matter expertise for control analysis according to FISMA and NIST 800-53

IT Security support providing solutions for C&A documentation and other IT Security requirements.

CISSP, CAP, CISA, or equivalent certification and continuing related professional development (or within 6 months of hire)

4 6 years of experience in information security

IT Security support in the scheduled review of system security vulnerability scan results. Identifies critical issues and suggested resolution.

Receive and accurately log all support requests in a timely manner using 84 Lumber Incident Management tools

Project Management support for small scale technology deployments

Demonstrated experience supporting third party security tools to manage and audit information systems

Evaluate new tools and use existing tools to help discover and mitigate security vulnerabilities

Coordinate with System and Network Administrators to ensure security vulnerabilities are tracked and mitigated in a timely manner

Review vulnerability scans and research new vulnerabilities and malicious software