GIS Senior Security Analyst
Location:
Posted:
November 23, 2016
Reference:
LEG00004L
The Senior Global Information Security Analyst is an in-house subject matter expert who diligently assists with the improvement of information security across the organization by understanding the threats it faces. Their primary responsibility is responding to incidents which may have involved and impacted Company Information Systems. This response includes participation in event analysis, incident investigation, documentation, and debriefing exercises, from the Information Security perspective.

The Senior Global Information Security Analyst will also work to ensure all business applications developed in-house or developed by third-parties include adequate information security controls through stakeholder integration in the Development Lifecycle and Change Management processes. They will also be working closely with the Information Security team to set direction via policy and technology mechanisms, including contributing to policy and documentation as needed reflecting the Senior Analyst's, and overall GIS Operations team role.

Primary Responsibilities include:
  • Assist with incident management response and analysis services on behalf of the Information Security function as a primary member of the computer security incident response team (CSIRT), including Tier 1 through 3 level analysis for the full scope and lifecycle of incident response (i.e. identification through closure including post-mortem and lessons learned) following industry established best practices in addition to being in accordance with Company-specific policies and standards
  • Assist with post mortem analyses of information security breaches, violations and incidents to identify root cause and lessons learned
  • Provide in-depth technical input for investigations of information security incidents including internal/external fraud, hacking attempts, and system outages
  • Monitor host and network detection systems, assist with operations, maintenance and configuration oversight
  • Analyze previously unknown malware utilizing static and dynamic methods to determine its behavior and impact on endpoints as well as build a list of indicators of compromise

Other Responsibilities include, but are not limited to:
  • Proactively improve the holistic Enterprise security posture by contributing rules, indicators of compromise (IOCs), and such artifacts where possible as the result of continuous monitoring and incident response actions
  • Review audit trails for unauthorized access attempts or other information security violations
  • Scan systems using custom and commercial security tools to identify potential vulnerabilities
  • Provide technical assistance with the initial set-up and secure deployment of systems which support information security including anti-malware systems, virus detection systems and firewall content filtering systems
  • Assist with the selection and adoption of automated tools which enforce or monitor compliance with information security policies, standards and requirements
  • Assist in the development of new approaches that will allow greater standardization and more effective management of information security metrics
  • Assist in the development and maintenance of documentation relevant to GIS (e.g., standard operating procedures (SOPs), formalized workflows, Operations-specific programs (i.e. Threat Intelligence) by leveraging the output of incident response analysis and experience
  • Expectation of off-hours support, responsiveness and availability in response to security related incidents, material developments which could create risk to the Company, known threats etc.
  • Some international travel required

Qualifications:
Bachelor's degree in Computer Science, Information Systems, other related field; or equivalent work experience
  • Minimum of three years of information security experience in a corporate or consulting environment
  • Excellent oral/written communication, problem solving and analytical skills
  • Scripting skills with languages such as Python and PowerShell a plus
  • Effective technical skills to understand the ramifications of various system security recommendations and decisions
  • Ability to work independently and as part of a team to achieve desired objectives and project results
  • Ability to interface effectively and decisively with all levels of management, departments and outside vendors
  • Any one or more of the following preferred
      • Certified Information Systems Security Professional (CISSP) from ISC2
      • (any) Global Information Assurance Certification (GIAC) from SANS
      • Forensics (e.g., EnCE, GIAC GCFA) certification a plus
      • Incident response-centric (GCIH, GCIA, GREM, GNFA, etc...) certification a plus
      • Offensive Security (OSCP, OSCE) certification, knowledge and/or penetration testing experience a plus
  • Demonstrated continued independent involvement within cyber security-specific communities at any scale (e.g., groups, organizations, conferences) or equivalent activity that seeks to maintain small and large scale awareness of major security topics and events (Globally) preferred
  • Demonstrated exceptional passion and drive for cyber security as evidenced by self-driven past accomplishments that had significant positive impact to shareholders preferred
A little about us:
We are lucky to work in a business where imagination, creativity, and play aren't only encouraged, they're required.

Know someone who would be interested in this job? Share it with your network.