Serves the Security Operations Center in supporting multiple disciplines of information security including security standards, solutions design and implementation; assists in development of standards/procedures in compliance with policies, state and federal regulations, and security best practices; manages the secure operation of the company's computer systems, firewalls, servers, and network connections; recognizes areas of improvement within the environment, and balances those initiatives with organizational goals. Responsible for maintaining the operational effectiveness of security tools and controls; provide daily monitoring of security technology, collaborate with Information Security Engineering, Threat teams, and Incident Responders to make recommendations for security controls and overall health of security systems; perform tool assessments and proof of concepts provide direct support to the business and IT staff; supply expertise and assistance with projects and incidents.
Principal Duties & Responsibilities
Subject matter expert for several security technologies including Antivirus, Network Access Controls, forensics system, and File Transfer systems, , email security gateway, intrustion prevention systems.
Develop procedures for these technologies to transfer knowledge to other team members.
Responsible for syslog connections from several technologies to further develop our threat correlation and security metrics.
Develop plans for enterprise wide deployment of several security.
Work closely with IT departments, Incident Responders, and Threat teams to test and implement new or updated technologies.
Provide feedback for proof of concept for new technologies. Stay abreast of new security technologies and share relevant information with team members.
Work with Threat and Vulnerability Management team to apply necessary patches to security systems to mitigate known vulnerabilities.
Work with Security Compliance to ensure our security systems meet regulations. Develop policies, procedures and reporting for identifying unauthorized software installed on corporate devices. Create SQL database queries for metrics and various reporting.
Conduct audits as required by multiple Federal and State regulations, SOX, HIPAA, GLBA, PCI and applicable industry directives
Work with Compliance, Privacy, Audit, Legal, HR, and Special Investigations to determine and apply risks, remediation, and correction as needed; monitor adherence to Aflac policies, procedures, and Information Security specific processes
Review security violation reports and handle and document approved exceptions; escalate security breaches and data loss and handle process for lost or stolen laptops and mobile devices
Maintain and update security policies within assigned technologies.
Research, analyze, and recommend software to rectify security deficiencies
Handle the rollout of new software for the team to include training, procedures, and other change management activities; provide a security briefing for new employees and communicate with Aflac personnel about information security policies
Monitor and respond to incoming mail in the SAFE (Security Awareness for Everyone) mailbox
Collect research in terms of best practices, business processes, and procedures
Compile and disseminate metrics for the department
Work with members of IT management to provide effective mitigation of reported security concerns and complaints
Performs other duties as required.
Education & Experience
Bachelor's Degree and five to six years of relevant technical work experience that has provided an understanding of security issues, software, and techniques across all existing computer platforms or an equivalent combination of education and experience