Associate Information Security Analyst
Job Type: Full Time / Permanent
POSITION SPECIFICATIONS: • Bachelor’s degree in information technology field or relevant experience in lieu of degree required; Information Security degree preferred • Work experience as an information security analyst, systems administrator, senior technician, program or project leader in one or more of the operating systems that are critical is preferred • Has extensive knowledge of all development, support and/or administration phases of application and infrastructure methodologies preferred • Willingness to obtain information security certification required • Working knowledge of risk assessment tools and other Information Security automated tools preferred; working knowledge of various authentication schemes (including Active Directory); and browser security functionality; policy development; data privacy; and common information security issues preferred.
MAJOR DUTIES: • Provides technical support to ensure the ongoing efficient and reliable operations of related information security systems/products including, but not limited to, continuous monitoring and maintenance of daily audit scripts, Information Security Managed Service Providers alerts, Active Directory Policy creation, web filtering products, security patching processes- including risk rating the patches, individual rights access reporting, etc. • Reviews information security violation logs – including Managed Security Service Provider (MSSP) logs/alerts, scan results and software reports on a regular basis, investigating any anomalies • Performing security risk assessments to methodically analyze (low to medium complex) applications associated with information assets and business intellectual information, identifying risks from both a technical and business perspective and recommending strategies to mitigate those risks to an acceptable level. • Utilizes on various enterprise-class security solutions for vulnerability management, intrusion detection, security information and event management, etc., to protect information • Incorporates proactive measures and providing swift response for malicious code breakouts including understanding past trends, being familiar with current threat reports and staying current using information security blogs and internet sources. • Provides user information security support for all server platforms (Windows, Tandem, Unix, Linux, etc. environments).
HOURS/LOCATION: • 8:30 a.m. – 5:00 p.m. (over as required) • Warrendale, PA (Hybrid – remote/office).
EXPLANATORY COMMENTS: • Good oral and written communication skills • Good decision making and problem-solving skills • Good analytical skills with attention to detail and accuracy • Ability to work on multiple assignments simultaneously • Ability to work cohesively in a team environment.