IT Security Analyst

19 Jul 2024

Vacancy expired!

Our client, an asset management firm focused on delivering growth equity investment solutions, is looking to hire a talented IT Security Analyst in Midtown Manhattan!This is a very prestigious and reputable hedge fund that has been around for over 40 years. In order to be considered, you must be open to working

3 days in the office, 2 days remote.The IT Security Analyst performs two core functions for the enterprise. The first is the day-to-day operations of the in-place security solutions while the second is the identification, investigation, and resolution of security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability assessments.The IT Security Analyst is expected to be fully aware of the enterprise’s security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. The IT Security Analyst will provide technical support for continuous monitoring and computer exploitation, specifically the identification of target mapping and profiling, network decoy and deception operations in support of computer intrusion defense operations.

Formal Education & Certification:
  • College diploma or university degree in Computer Science and/or two years equivalent work experience.
  • One or more of the following certifications:
    • CompTIA Security+
    • GIAC Information Security Fundamentals
    • Microsoft Certified Systems Administrator: Security

Technical Experience Requirements:
  • Extensive experience with Firewalls UTM services, Intrusion Detection and Prevention Systems, Deception Technology, security alert management. (CVE analysis), Mitre Att&Ck Framework.
  • Experience with Network Detection & Response services, Vulnerability Assessment tools, Fortinet Security Fabric, Wireless Intrusion Detection.
  • Working technical knowledge of security intelligence sources, end point forensic analysis, MS Windows internals, VMware security settings, Azure security configuration, Linux security.
  • Strong understanding of IP, TCP/IP, and other network administration protocols. In depth knowledge of packet analysis and Wireshark.
  • In depth understanding of operating systems, network/system architecture,protocols, and enterprise services, and enterprise architecture design.
  • Familiarity with security frameworks like NIST, CIS, COBIT.

Acquisition & Deployment:
  • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
  • Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
  • Perform the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.

Operational Management:
  • Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices).
  • Maintain operational configurations of all in-place security solutions as per the established baselines.
  • Monitor all in-place security solutions for efficient and appropriate operations.
  • Review logs and reports of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise plans for appropriate resolution.
  • Conducts network monitoring and intrusion detection analysis using various computer network defense (CND) tools, such as intrusion detection/prevention systems (IDS/IPS), firewalls, host-based security system (HBSS)
  • Correlates network activity across networks to identify trends of unauthorized use
  • Reviews alerts and data from sensors and produces technical incident reports
  • Tests new computers, software, switch hardware and routers before implementation to ensure security
  • Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
  • Provide on-call support for end users for all in-place security solutions.
  • Understanding of the Incident Response Phases and lead the testing of the existing Incident Response plans

  • ID: #44213485
  • State: New York New york city 10001 New york city USA
  • City: New york city
  • Salary: $125,000 - $150,000
  • Job type: Permanent
  • Showed: 2022-07-19
  • Deadline: 2022-09-10
  • Category: Internet engineering