The IT Security Analyst is responsible for all aspects of IT Security. This position will review and recommend firewall changes, monitor and escalate as appropriate all intrusion detection and network incidents.
The IT Security Analyst executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs; provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.
Collect and organize required evidence for NERC CIP compliance, such as network diagrams, access controls, ports and services, physical port security, malicious code prevention, security event monitoring, account management, and baseline components.
The candidate will design, test, and implement secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, loss prevention, and eDiscovery actions.
This job is responsible for maintaining solid knowledge of IT Security and Compliance concepts around industry regulations and standards, controls, audit requirements, compliance, identity management, development, and IT infrastructure.
Implement Risk Management Framework (RMF), through the required government policy (i.e., NISPOM, JSIG, ICD etc.), make recommendations on process tailoring, participate in and document process activities.