Sr. Security Analyst

Our client hiring a Sr Security Analyst. This role is a Contract to Hire/full-time and requires work hybrid in Dublin, CA. Please find below the requirements for this job. Job Description Job Title: Sr Security Analyst Location: Dublin, CA Job Type: Contract-Hire/ Full time Contract Duration: 12 months Hybrid work RESPONSIBILITIES:

• The Sr. Security Analyst works directly with IT project teams as the security subject matter expert to provide information security recommendations and guidance in order to identify, manage, and mitigate security risks.
• The position is also responsible for validating security requirements adherence, evaluating security services and technologies, and developing information security policies and procedures.
• The Sr. Security Analyst is also responsible for performing host and vulnerability assessments, managing change requests thru the change management process, performing vendor risk assessments, and ensuring compliance with all applicable laws, rules, and regulations.
• Responsible for identifying and establishing project security-related requirements, providing guidance, and ensuring that security requirements have been captured, designed, built, and validated prior to the deployment of the new/enhanced capabilities.
• Interprets information security policies, standards, and other requirements in order to ensure proper adherence and implementation.
• Develops use cases for project-related penetration testing in alignment with the security requirements objectives.
• Lead the execution of project-related penetration testing, source code security review, and host security certification activities.
• Develops system, database, or network device minimum security baselines and automated scripts use for host security certification.
• Manage and maintain security-related tools used to perform host security certification and vulnerability management.
• Performs research and evaluation of various methods to secure systems, networks, databases, and business applications in support of the project deliverables, related services, and other IT organizations.
• Contributes to the security enhancement of the Systems Development Lifecycle (SDLC) and the Threat and Vulnerability Management programs.
• Creatively and independently recommends resolution to security-related problems.
• Develop technical reports, metric reporting, and/or security-related presentations.
• Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.

• Eight years of Information Technology Security, at least 3 with large enterprise organizations
• CISSP (Certified Information Systems Security Professional)
• Demonstrated experience and subject matter knowledge in information security for applications, web architectures, operating systems, databases, and networks.
• Working knowledge of UNIX and Windows
• Firewalls, VPN, PKI, IPS, Wireless, IPT
• Oracle, MS SQL
• Virtualization Security
• Excellent attention and orientation toward meticulous work Proficient in Microsoft Office Products
• Familiarity with firewalls, VPN, PKI, IPS, wireless, IPT, virtualization security, Oracle, and MS SQL preferred.