Job Description :
I.T. Security Analyst
Los Angeles (Westwood)
12+ months
US citizen or green card only please
$65/hr on 1099, $55/hr on W2
Scope of Activities:
1. Performs in depth monitoring, threat and risk analysis, vulnerability scanning, mitigation and reporting; identifies and remediates electronic security vulnerabilities through hands-on countermeasures or by making risk and evidence based recommendations.
2. Assists with day-to-day operations of DGSOM security systems, including but not limited to: Splunk, PaloAlto, Nexpose Vulnerability Scanner, Sophos Endpoint Protection, Cisco AMP, and CheckPoint Encryption.
3. Develops and maintains metrics and reports related to DGSOM’s information security posture, including vulnerability management, incident alerting and response, intrusion detection/prevention, endpoint and mobile device security.
4. Assists in audit processes to help ensure thorough documentation, evaluation and validation of Information Security controls
5. Establishes a strong understanding of DGSOM/ISS security systems, their implementations, customizations and operational effectiveness.
6. Monitors, assesses, and fine-tunes security systems, tools and assists with the remediation of network, system and application vulnerabilities
7. Performs security operational work in compliance with defined SLA and OLA''s, including firewall change requests, approvals, operational inquires, risk assessment support, patching support, OS, application and network security troubleshooting and security related incidents.
Skills and Credentials:
3+ years work experience in information security, risk management, or related experience
3+ years of information technology operations or support experience
Strong analytical mind capable of analyzing large volumes of data, such as packet captures, netflow data, firewall logs, and syslog.
Knowledge of hardening and securing all well known versions of Windows and Linux systems
Broad array of knowledge across systems, applications, compliance, and information security.
Strong understanding of a wide variety of incidents such as network intrusions, web-based attacks, malicious emails, root and user level compromises, malware, botnet infections and other anomalous activity
Knowledge of existing and emerging regulatory compliance requirements (HIPAA, PCI, FERPA)
Strong understanding of identity and access management concepts (AAA, Single Sign-On, Enterprise Directory Systems, Role Base Access Control and Account Provisioning
Understanding of the legal aspects of data aquisitions and electronic discovery
Good interdepartmental skills (Business Units, Human Resources, etc
Strong understanding of security systems such as; Splunk, IDS/IPS, Firewalls, and DLP.
Strong understanding of PKI Encryption, PGP, SSL, TLSetc.
Understanding of business terminology, workflows and requirements
Interview Process:
1 phone interview
1 face-to-face or Skype interview
Note: candidate must pass extensive blood and drug test