Sr Security Analyst

Title: Sr Security Analyst

Location: Boca Raton FL

Duration: 12 Months

Client: State of FL

Description

The Security Analyst is responsible for assisting with the daytoday operations of securing the departments various information systems. Reporting to the Security Risk and Compliance Office Security Manager the Security Analyst is tasked with providing technical expertise in all areas of network system and application security. The Security Analyst works closely with the various teams in the infrastructure department to ensure that systems and networks are always designed developed deployed and managed with an emphasis on strong effective security and risk management controls. The Security Analyst is responsible for departments vulnerability management program administers the annual cybersecurity assessments and penetration tests and researches and reports on emerging threats to help the department take preemptive risk mitigation steps. The Security Analyst effectively correlates and analyzes security events to proactively detect threats and mitigate attacks before they occur.

Responsibilities

• Proactively monitor the environment to detect and implement steps to mitigate cyberattacks before they occur.
• Provide technical expertise regarding securityrelated concepts to operational teams within the department and the business.
• Review investigate and respond to realtime alerts within the environment.
• Review realtime and historical reports for security and/or compliance violations.
• Monitor online securityrelated resources for new and emerging cyber threats.
• Assesses new security technologies to determine potential value for the enterprise.
• Conducts vulnerability assessments of department systems and networks.
• Manage systems owned by the Security Risk and Compliance Office (SRCO)
• Liaise with the departments trusted security manage services infrastructure technical resources and 3rd party business vendors.

Demonstrable Requirements

• A fouryear college degree or equivalent industry training and certifications.
• Three to five years of experience in a security analyst or related position.
• Technical knowledge of enterpriseclass technologies such as firewalls routers switches wireless access points VPNs and desktop and server operating systems.
• Thorough understanding of Microsofts enterprise technology platform including Azure Active Directory SQL and the Windows server and desktop operating systems.
• Thorough understanding of Redhat and Oracle database operating systems.
• Working experience with the following technology vendors and products: Splunk Tripwire Rapid7 Nexpose Vulnerability Scanner Metasploit Qualys Vulnerability Scanner (Cloud) Delinea Secret Server Carbon Black Application Protection Veracode SAST & DAST Technologies.
• Strong writing skills as well as the ability to articulate securityrelated concepts to a broad range of technical and nontechnical staff.
• Demonstrated experience implementing and/or enforcing security and compliance frameworks such as NIST PCI DSS and ISO.
• Ability to demonstrate selfsufficient working capacity and proficient problemsolving skills.