Information Security Analyst

13 Oct 2024

Vacancy expired!

Information Security AnalystiSphere is searching for a 6-12 month contract Information Security Analyst in the Spring, TX area. Our consultant will be responsible for analyzing information security systems and applications and recommends and develops security measures to protect information against unauthorized modification or loss; monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security. Conduct vulnerability assessments and monitor systems, network, databases, and Web for potential system breaches. May be assigned responsibility for internal or external systems security (i.e., cloud services) with oversight and/or assistance from the Manager, Information Security

Key Responsibilities:• Perform, as needed, Information Security, application, and system security functionality testing to ensure adequate controls are applied and/or configured pre-implementation and post-implementation.• Vulnerabilities - conduct vulnerability assessments and monitor systems and ensure critical and high vulnerabilities are tracked managed and remediated within the documented SLA’s; determine an action plan to reduce vulnerabilities and/or document the exceptions based on acceptance of risk.• Control Testing - Perform Information Program controls testing sequences that are assigned to the team as part of the Information Security Program, such as Data Loss Prevention (DLP), scanning for cardholder data locations and retention periods, phishing simulations, exploit simulations, physical network security, etc.• Control Monitoring - Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases, and Web-based security; respond to alerts from information security tools, report, investigate and resolve security incidents.• Configuration Review - Assist in reviewing configuration of DLP, HIPs, Encryption, and Anti-Virus systems including monthly reports on scans to ensure cardholder data and systems are secure.• Information Security Program Controls - Ensure that all IS Program controls are sent out and validated throughout the year on a monthly and quarterly basis to proactively ensure all controls are operating effectively; ensure that historical data is retained and available to be reviewed by internal audit.• Compliance - PCI - Work with external PCI QSA and multiple internal teams that are responsible for providing updated policies, evidence for PCI requirements. Achieve annual Report on Compliance (ROC); ensure compliance with other regulations and privacy laws as applicable.• Research security trends, new methods, and techniques used in unauthorized access of data to preemptively eliminate the possibility of system breach; contribute to the annual review of security policies and assist in keeping policies current.• Educate and communicate security requirements and procedures to all users. Participate in developing additional or current Security related training.• Attend monthly Information Committee meetings as required.

Competencies Required:• Good understanding of assessing, utilizing, supporting and/or maintaining of logical and physical security architectures and technologies including but not limited to IPS/IDS, firewall, SIEM, VPN, anti-virus, email, web, data, video, physical access control hardware and related operating systems & supporting software.

Minimum Qualifications/Experience:• Minimum of 2 years’ directly related experience or other transferrable technical experience.

Formal Education & Certification:• Bachelor’s degree in Information Systems, Computer Science or a related discipline preferred, or an equivalent amount of directly related work experience.• One or more of the following certifications is preferred:o CompTIA Security +o CompTIA Advanced Security Practitioner (CASP)

iSphere provides our potential consultants with direct access to top area clients and decision makers frequently resulting in a quicker interview and hiring process. For our selected candidates, our recruiters provide resume and career coaching, interview preparation, knowledge of local compensation trends, and try to get to know you as a person all while providing as clear and consistent communication with you as possible.

Many of our consulting roles offer the possibility to transition to staff assignments with our client companies for those candidates that are interested and can serve as an excellent chance to try an environment out before making a long-term career commitment to an organization.

iSphere offers several choices of major medical plans as well as the opportunity to participate in 401K and profit sharing plans.

Client access, flexibility, and support for your long-term goals; get more at iSphere

About iSphere

Building on a foundation of individual care and commitment for over 20 years, iSphere continues to grow by setting the standard for better service to both our IT consultants and the clients we serve.

As Corporate and Government solution strategists and architects, iSphere provides innovative products, professional services, and staff to help private and public sector clients achieve their goals and transform their technology driven business models. Clients partner with us to deliver successful business-IT strategy, top technology systems and bright IT talent.

Partners to the energy and financial trading, healthcare, education, and government sectors, iSphere’s team of skilled consultants are experts at solving business and technology challenges with advanced IT solutions.

With an unflagging work ethic, a cohesive team, and a passion for innovative service and solutions, our clients know they can depend on iSphere.

  • ID: #46422286
  • State: Texas Spring 77373 Spring USA
  • City: Spring
  • Salary: Depends on Experience
  • Job type: Contract
  • Showed: 2022-10-13
  • Deadline: 2022-12-10
  • Category: Security