Sr. IT Systems Security Analyst

Are you an experienced Cyber Systems Security Specialist?

Do you have:

•  an active CISSP, CISM, and/or CISA certification & 8 years of experience performing complex, large- scale system security analysis efforts?

• Technical “hands-on” proficiency with several security-related systems and applications (Vulnerability software, next generation firewalls, IDS/IPS, SIEM, Data Loss Prevention).

Our client, a global manufacturing company, has an immediate DIRECT HIRE opportunity for a Sr. IT Systems Security Analyst at their Broomfield, CO location. 

Pay Range:  $100K (DOE) + World Class Benefits Package

** Must be eligible to work in the US for any Employer **

• Responsible for a broad range of security tasks, including the day-to-day security administration of network security devices, as well as the management of technologies, such as firewall, intrusion detection, intrusion prevention, data loss prevention, antivirus, anti-spam, antispyware, and security information and event management (SIEM) tools.

IT Security tools: Web Content Filtering (URL Filtering), Web Application and Malware Protection, Intrusion Prevention System (IPS), SSL Decryption, Email Security, Strong Authentication, Remote Access, End Point Protection, Advanced Threat Management (APT), Vulnerability Scanning & Remediation, Identity Management, Data Encryption Global DNS, Security Incident Management (SIM), Public Key Infrastructure, Web Application Firewall / Proxy, IT Security Forensics, Password Vaulting, Risk assessment, security vulnerability assessment.

• Create and modify procedural documentation as needed.

• Manage intrusion detection and perimeter security devices.

• Assist with vulnerability management.

• Participate in design and implementation of new security controls.

• Follow up on remediation of vulnerabilities.

• Investigate and follow up on incident reports.

• Execute effective security and malware protection.

• Manage and respond to information security audits.

• Ensure that all information systems operate in accordance to set standards.

• Participates in an on-call rotation with department.

• Broad training in a related field usually acquired through college degree or work-related experience

• Job related experience for 8 years minimum, and 2 years of technical leadership

• CISSP, CISM, CISA certifications preferred; other security relevant certifications considered (e.g. SANS GIAC-GSEC, GCED, GCFW, GCIA, GCIH, GISP, GSLC).

• Knowledge of CISCO ASA solutions specifically remote access

• Technical “hands-on” proficiency with several security-related systems and applications (Vulnerability software, next generation firewalls, IDS/IPS, SIEM, Data Loss Prevention).

• Technical proficiency with security-related systems and applications, especially mainstream OS’s (e.g. Microsoft Windows and Linux), Vulnerability Scanners, SIEM, and anti-malware tools, user provisioning systems and intrusion detection, automated policy compliance, and desktop security tools.

• Experience in documenting and maintaining processes and procedures.

• Knowledge of information security principles, including risk assessment, intrusion detection, network access control (NAC), encryption, threat and vulnerability management.

• Knowledge of network infrastructure, including routers, switches, firewalls, VPN, and associated network protocols and concepts; CCNA preferred.

• Knowledge of SANS Twenty Critical Controls information security policies, procedures, guidelines, and methodologies desired.

• A basic familiarity with cryptographic concepts and their practical application.

• Strong analytical and problem-solving skills to enable effective security incident and problem resolution.

• Proven ability to work under stress in emergencies, with the flexibility to handle multiple high-pressure situations simultaneously.

• Strong team-oriented interpersonal skills, with the ability to interface effectively with a broad range of people and roles, including vendors and IT and business personnel.

• Proven focus in metrics-driven delivery: defining Service Level Agreements (SLAs), monitoring SLAs, enhancing environment to meet SLAs.

• Experience in driving process and technology re-engineering using industry practices e.g., COBIT, ITIL, CMMi.

• Ability to communicate clearly and efficiently with both technical and non-technical audiences.

• Requires short term travel (5% travel)

Job Store is an EOE. 

** Must be eligible to work in the US for any Employer **