Security Analyst II: Engineer, Resume,

SUMMARY:

Critical analysis in the engineering of complex solutions to cyber threats,
Maximize client and stakeholder satisfaction through high personal and professional service standards.
Effective and efficient communication and coordination with clients, end - users, and coworkers.
Identify, drive and implement project-, task-, or position-appropriate best practices and ensure regulatory and standards compliance (For example: PCI, ISO27001, CJIS, SOX, HIPAA, FERPA, TAC202, NIST) in day-to-day and strategic business processes.
High-level computer skills: including digital forensics, incident response, virtualization, data and traffic analysis, diverse device configuration, & security practices.
Interpretation and application of industry best practices into IT and security policies and procedures at an organizational and department level.
Research and analysis of technical data and preparation of technical reports.
Proficient in multiple platforms including Windows, Linux, Imperva, and commonly used business software and specialized security systems such as confidental.
Use of scripts to automate processes,

PROFESSIONAL EXPERIENCE:

Security Analyst II: Engineer,

Confidential,

Responsibilities:

Daily work within and between IT Operations teams to accomplish project work enhancing network security and improving network flow, to meet the needs of the Enterprise in compliance with policy and regulatory standards
Frequent work with colleagues from sister companies in accomplishing shared goals and knowledge sharing
Incident response, analysis, containment, and remediation: from malware to DDOS to policy violations
Lead and conduct and provide detailed analysis for sensitive personnel investigations at all levels of the company: entry-level to executive. Gathering forensically sound evidence for use in court.
Identify security risks and exposures, determine causes of security violations and recommend preventative measures
User administration and work with Active Directory and LDAP across many domains
Pull logs and evidence of compliance with regulatory requirements for audits: PCI, SOC1, SOX, & others
Evaluate, test, recommend, develop, coordinate, monitor, and maintain information security policies, procedures and systems, including hardware, firmware, software, and people
Configure, install, maintain, tune, upgrade, and work with multiple security appliances and tools, including: Imperva SecureSphere, Cisco Firepower IPS & SSLs, Microsoft Phonefactor/Azure, Confidential, FireEye EX & WX, Bluecoat SSLs and Proxies, Carbon Black, ArcSight, Symantec Endpoint Protection & Endpoint Encryption
Create and modify traffic filtering rules to optimize personnel response efforts and appliance resources, while protecting the business from impact
Design and write DPS policies & associated internal and external programs, procedures, and protocols
Daily work with NIST, ISO, CJIS, and SANS requirements to ensure organizational and division compliance
Communication and coordination of project design with Internal Auditor’s office and other divisions
Review and interpretation of security testing reports & their compliance implications
Review and provide analysis of security programs (SANS), and reviews of network analysis forensic software (RSA programs)
FBI CJIS Security and Awareness: Level 3
Primary implementer of a network mapping project that associated data assets with their data type (PII, PCI, HIPAA, III, etc.), with their physical storage devices/locations, down to the room and building

We provide IT Staff Augmentation Services!

,

We'd love your feedback!

Resume Categories

Client Services

Job Seekers

Visa Sponsorship