Analyst Information Job Description
Analyst information
provides information System Security Engineering expertise throughout the system’s entire lifecycle in accordance with Risk Management Framework (RMF) methodologies and DoD Instruction 8570.1-M.
Analyst Information Duties & Responsibilities
To write an effective analyst information job description, begin by listing detailed duties, responsibilities and expectations. We have included analyst information job description templates that you can modify and use.
Sample responsibilities for this position include:
Design, Deploy, and Maintain Security Incident & Event Management (SIEM), Database Activity Monitoring (DAM), and Database Vulnerability Manager (DVM) system
Drafts and implements information technology security policies and standards in accordance with HBC’s goals and objectives and in compliance with regulatory and statutory requirements including PCI-DSS, HIPAA
As part of the system requirements definition phase of IT projects, conducts high level threat risk assessments to support the budget related to the security component of the project
As part of the system design phase of IT projects, provides guidance to project managers to ensure that the design of new IT systems is aligned with HBC’s IT security directives and applicable security standards (e.g., PCI)
As part of the implementation phase of IT projects, coordinates or conducts vulnerability scans to ensure that the systems deployed are secure before going live
Coordinate, lead or participate in penetration tests, vulnerability scans and other risk assessments as necessary to protect HBC’s information assets
Perform information security risk assessments on new products and systems
Develop detail system and program specifications
Monitor sales and identify business opportunities based on findings from specific business data
Provide effective and actionable data to sales team in order to identify and realize all potential sales opportunities
Analyst Information Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Analyst Information
List any licenses or certifications required by the position: ITIL, CISSP, CISA, CISM, CRISC, SAN, CEH, GIAC, SANS, SSL
Education for Analyst Information
Typically a job would require a certain level of education.
Employers hiring for the analyst information job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Collage Degree in Computer Science, Technical, Education, Business, Information Technology, Information Systems, Information Security, Engineering, Management, Computer
Skills for Analyst Information
Desired skills for analyst information include:
HTTP
Risk Management Framework
DOD and Air Force DIACAP
Industrial Control Systems security highly desired
Information Assurance
NETOPS
Effective testing practices and methodologies
FFIEC
Project management principles and methodology
Regulatory and audit mandates to ensure environments meet PCI
Desired experience for analyst information includes:
Experience configuring/deploying/updating SIEM technologies
Ability to configure SIEM to generate alerts/reports
Ability to configure custom correlation rules
Experience configuring devices to retrieve audit log data
Experience with McAfee SIEM, Nitro, Sentrigo, SolarWinds
Expert in developing and tuning ETL processes using a variety of technologies
Analyst Information Examples
1
Analyst Information Job Description
Job Description Example
Our company is growing rapidly and is searching for experienced candidates for the position of analyst information. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for analyst information
- Collecting, monitoring and analysing IT security metrics to measure the effectiveness of ISO’s IT security management processes and producing relevant reports
- Documenting and updating elements of IT security governance
- Serve as a point of contact for information security inquiries and audits
- Reducing risk through threat mitigation by performing vulnerability scanning which includes analysis and coordinating remediation
- Cash Application – credit card processing, lockbox applications, printing and mailing customer invoices, ordering supplies
- 5 years of hands on Information Security experience preferably within the financial industry or a in a SOC or Incident Response role
- Ability to quickly analyze data sets and identify patterns to uncover risky attributes and trends
- Ability to proactively tune systems to reduce false positives based on internal & external threat intelligence
- Ability to proactively mine event systems to identify emerging threats
- Ability to document and implement the rotation schedule and assignments for handling escalated incidents
Qualifications for analyst information
- Competency in a programming language is a plus
- Knowledge leadership in the information security discipline
- Bachelor’s degree in Computer Science, Information Systems or related discipline preferred
- CISSP, CISA, CIPP, CIPT or CRISC designation preferred
- 3+ years of experience directly in an information security professional role
- Hands-on experience with risk management, compliance and remediation
2
Analyst Information Job Description
Job Description Example
Our company is looking to fill the role of analyst information. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for analyst information
- Recommends and implements hardware, OS, and security application updates
- Performs post mortem analysis on logs, traffic flows, and other activities to identify malicious activity
- Analyzes and reviews escalated cases until closure
- Assists in the design and development of training materials and general documentation for non-technical business community
- Ensures all security solutions and designs meet local and federal compliance requirements such as SOX, ISO 27001, and PCI DSS and coordinates with the Internal/External Auditors and Information Technology teams to successfully complete periodic audits
- Participates in an on-call rotation and performs after hours work as required
- Serve as a core member of ESnet’s Security Group performing varying security duties including threat awareness, proactive and reactive security analysis, incident response, forensic analysis, and resolution of security incidents
- Uncover computer and network vulnerabilities, reducing the risk incurred by vulnerabilities, automating workflow processes supporting ESnet’s security architecture
- Integrate knowledge of network protocols, services, threats, vulnerabilities, mitigation strategies, hardware capabilities, and other information to build a security environment that reduces and mitigates risk while allowing ESnet’s open science mission to succeed
- Examine a wide range of data, including Bro logs, NetFlow data, centralized syslog, and authentication logs to detect security incidents
Qualifications for analyst information
- Retail experience a must, e-Commerce experience a plus
- Knowledge of Retail and e-Commerce merchandising best practices
- Proficiency with a PIM tool (product information management) and with site analytics tools (e.g., Omniture, Visual Sciences, Coremetrics or Google Analytics)
- Broad understanding of business processes and forward thinking ability to project impact of changes
- Sound business judgment, proven ability to influence others and strong decision making skills based upon a mixture of analysis, wisdom, experience, and judgment
- Demonstrate a high level of initiative and be a solution seeker
3
Analyst Information Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of analyst information. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for analyst information
- Defines and uses data queries for research and analysis
- Provides references for internal and external users by helping to maintain user documentation
- Helps to determine operational objectives by studying business functions
- Assists in designing new systems and applications for business by analyzing requirements
- Helps to improve current systems and applications by studying current practices
- Collaborates with other HealthTrust departments to analyze and complete ad-hoc data projects and requests
- Troubleshoots and resolves hardware, software, and connectivity problems, including user access and component configuration (VIRA) (level 3)
- Interacts extensively with external and internal customers/departments/companies
- Achieve first contact resolution of employee inquiries by taking ownership of the call and resolving issues, answering questions, , without transferring the employee to another area
- Research issues employees have using the system
Qualifications for analyst information
- Knowledge of data security administration principles
- 5 years of experience in information security or related technology experience required, experience in the securities or financial services industry is preferred
- 5 years of cyber security and incident response
- Strong knowledge of technology and security controls related to the detection, analysis, containment, eradication and recovery from cyber security incidents
- Familiarity with Windows operating system and associated vulnerabilities
- Server and database security hardening
4
Analyst Information Job Description
Job Description Example
Our company is growing rapidly and is looking for an analyst information. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for analyst information
- Define Information Security requirements for each project and ensure that they are fulfilled prior to going into service
- Scope, arrange and support penetration testing and vulnerability testing and track remediation to a close
- Ensure that relevant security standards are applied to specific projects
- Carry out PCI and DPA impact assessments on projects where appropriate
- Liaise with the internal Security Operations Centre Team to ensure that vulnerability scanning is conducted of in-house applications and infrastructure
- Support delivery of and input to the Information Security Assurance plan
- Provide guidance to the business and technical teams around Information Security policies and standards
- Work closely with the wider architecture and development teams to ensure security is built into products as per security requirements
- Represent the Information Security Team and provide input to the Change Advisory Board and Network CAB on proposed changes
- Represent the business at security industry events and cover for the Information Security Manager as required
Qualifications for analyst information
- Able to work on multiple tasks and respond to rapidly changing priorities
- Minimum of 8 years of experience in cyber security (may include college work)
- Experience with incident response and driving incidents to resolution
- Ability to serve as a consultant on long-range vision for security architecture for ESnet
- Able to identify and implement security enhancements that will maximize the security profile of ESnet while being sensitive to its mission
- Familiarity with public-key and private-key encryption techniques including DES, RSA, and PGP
5
Analyst Information Job Description
Job Description Example
Our company is growing rapidly and is looking for an analyst information. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for analyst information
- Manage, review and build IDS and IPS systems
- Be and escalation point and review escalated IDS/IPS alerts and logs
- Research next generation security issues, 0-day attacks and vulnerabilities
- Conduct review of firewall and perimeter rule sets
- Support DDoS protection infrastructure and operations
- Assist with strategic initiatives around future security infrastructure and tools - such as advanced threat protection, data encryption, and key management
- Perform security reviews of server / network / web application design within a virtualized environment and ensure compliance with security policies and best security practices
- Support vulnerability assessment functions and assist in 3rd party penetration testing
- Manage remediation of vulnerabilities through risk ranking and scoring
- Act as a key member of Incident Response team
Qualifications for analyst information
- Certified Ethical Hacker (CEH) certification a plus
- Experience streamlining operational capabilities through standardization and automation
- Must have a BA or BS degree equivalent and 6+ years related experience in Information Systems, Computer Science or a related field
- Certification must be obtained within 6 months of hire
- Microsoft Office/Suite proficient (Excel, SharePoint)
- May lead a team focused on VBA projects, processes, and/or problem resolution