Information Security Analyst Senior Job Description
Information Security Analyst Senior Duties & Responsibilities
To write an effective information security analyst senior job description, begin by listing detailed duties, responsibilities and expectations. We have included information security analyst senior job description templates that you can modify and use.
Sample responsibilities for this position include:
Information Security Analyst Senior Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Information Security Analyst Senior
List any licenses or certifications required by the position: SANS, CISSP, CISA, SSL, CISM, PMP, ISACA, CRISC, GCIH, IIQ
Education for Information Security Analyst Senior
Typically a job would require a certain level of education.
Employers hiring for the information security analyst senior job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Information Security, Business/Management, Education, Leadership, Computer, Accounting, Computer and Information Systems, English, Auditing
Skills for Information Security Analyst Senior
Desired skills for information security analyst senior include:
Desired experience for information security analyst senior includes:
Information Security Analyst Senior Examples
Information Security Analyst Senior Job Description
- Provides support for information cyber security investigations on-call response for cyber security incidents
- Participates in the development of communications and related campaigns for information security awareness among all staff
- Provide operational support for the in the form of threat and vulnerability management, web application assessment, and intrusion detection tasks
- Development of Standard Operating Procedure/Formal Policy and Procedure documents
- Perform security risk assessments on projects
- Ensure remediation of identified security risks
- Perform technical analysis and review of cyber security artifacts (SSP, PIA, PTA, CP, ASA, MOU, ) and security documentation library
- Initiate, coordinate and track the patching and remediation of security weaknesses as they are discovered, via a "Plan of Actions and Milestones" (POAM)
- Ability to speak and understand security terminology, especially those related to Information Assurance
- Review work instructions and operational procedures for compliance with security requirements and policy
- The ability to work in an environment that present tight timelines and high expectations
- Must be able to adapt quickly to ever changing requirements and priorities
- Certifications or training relevant to the position and work
- IT experience and understanding of common devices, equipment, environments, network diagrams & systems
- Mobile platform, network and device security experience is a plus
- The ability to build and nurture strong relationships across other BU’s will be a key to success
Information Security Analyst Senior Job Description
- Projects/programmes are delivered securely
- Recognised as an Information Security SME
- Prepare and deliver evidence that demonstrates compliance with requirements
- Collaborate with CGI Federal project teams to prepare, review, implement and update detailed project policies, processes and reviews
- Identify how new security requirements need to be implemented and present alternatives to CGI Federal project leads
- Prepare and deliver security and privacy awareness training to different project team audiences
- Lead and manage CGI Federal’s Healthcare Compliance Security projects
- Prepare, validate and maintain security documentation
- Prepare, update and review security-specific policies, processes, standards, guidance, evaluation requirements and corrective action plans (CAPs)
- Demonstrate effective an efficient security risk management
- 5-7 years of relevant experience in the area of IT risk and technology and/or information security
- Experience in a high transaction, large/matrix business environment ideally within Financial Services an asset
- Understanding of standard IT Security and ITIL processes
- IT professional with minimum 7 years of Information security experience especially in Firewalls, Intrusion prevention systems, Vulnerability Assessment, Anti Malware, Anti-Spam, Content Filtering, SIEM & Security Incident Response management
- Previous Security Administration skills
- Must possess a willingness and desire to keep abreast of new zero-day vulnerabilities, exploits, attack methodologies, malware trends new developments in forensics, malware analysis and general information security best practices
Information Security Analyst Senior Job Description
- Will be the primary POC contact for Enterprise Cyber Security Operations during shift hours
- Will be responsible for working with Global IT Client Services team members to mitigate end user security incidents during shift hours
- Will create, assign to the correct IT support team and oversee resolution of Service Now tickets for any identified cyber security incidents or potential incidents and
- Will monitor Microsoft Exchange EOP/ATP alerts and emails from end users to resolve any email issues
- Will monitor and respond to alerts from Hitachi Vantara Advanced Threat Protection solution and mitigate any security threats identified
- Attend weekly team staff meeting each Monday at 10am MST over teleconference and occasional other other hour meetings or support
- Develop and execute security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate company email, data, e-commerce and web-based systems
- Recommend and implement changes to enhance systems security and prevent unauthorized access and administer security policies to control physical and virtual access to systems
- Monitor and research new and emerging threats to preemptively eliminate the possibility of system breach
- Participate in security audits and security risk assessments
- Strong analytical and critical thinking skills English skills at an intermediate to advanced level (both written and spoken) with strong communication skills are a must
- Must be able to manage own personal performance, with a highly action orientation attitude and able to resolve complex problems
- Must have experience in partnering with another business groups, L3, engineers and a wide range of stakeholders
- GSEC, GCIH, GCIA, GNFA, SANS certifications are preferred
- McAfee Certified Product Specialist SIEM certification or its equivalent in experience is a strong plus
- Certified Ethical Hacker knowledge is a strong plus
Information Security Analyst Senior Job Description
- All Privileged Access Processes
- All Privileged Access Controls
- All Privileged Access Reporting
- All Privileged Access Approvals and all Privileged Access Provisioning
- Oversees the proper operations and maintenance of all the deployed detective security controls, both internally and externally managed security services throughout the Bank's technology infrastructure
- Develops and supports plans for implementation of new security projects for the management of IT Security and IT Risk, including infrastructure and systems, applications and data, internal and supplier security controls, across the enterprise
- Maintain relationship with internal audit team and regulator examiner liaisons in response to ongoing request for evidences from various examinations
- Conducting Information Security assessments on all information security assets (internal and external) to determine and disseminate risk rating and compliance associated with protecting data integrity, confidentiality, and availability
- Evaluate risk exposure and remediation identifying, reporting, and resolving security violations
- Coordinate, provide oversite, and support external audits, examinations, and tests relating to the Information Security Program
- Knowledge of MS Windows, Active directory, within a corporate environment (desktop and server)
- Flexible, required to work in 24x7 shifts
- Basic understanding of server, workstation, network, database and web technologies
- Proactive and aggressive, functions with little guidance, but also functions well in team environment
- Must have forensic analysis experience
- Security Incident Response Training and experience required
Information Security Analyst Senior Job Description
- Provide and document advice, risk assessment and recommendations regarding privacy and security controls for projects/solutions throughout an asset's lifecycle
- Communicate regularly with Project Managers, project teams and representatives from various functional teams, including escalating any matters that require additional analysis
- Provide input on the formulation of risk control standards that impact ITS Global projects and business sponsors
- Excellent critical thinking and problem-solving skills, especially when confronted with new or unique situations
- Experience working as a security analyst in a SOC environment
- Experience coordinating disparate teams across IT and business organizations to resolve security incidents
- Strong technical information security knowledge in host-based forensics, network analysis, and log analysis
- Heavy experience with Active Directory and LDAP
- Provide IT risk reduction recommendations
- Reviews security audit reviews with Network team and creates remediation guidance for vulnerabilities found
- Scripting and/or coding abilities in common cross platform languages
- Ability to work alone in a group, under pressure
- Information security certifications, are required (i.e., (ISC)2 CISSP, ISACA CISA, SANS GIAC, Computer Forensic External Certification-CFEC, CERT-Certified Computer Security Incident Handler)
- Will ensure information security standards and will help to mitigate the risk to ensure confidential information remains secure
- GSEC, Security+, CCNA
- Advanced Security certifications demonstrating a broad knowledge of the information security field such as (ISC)2 CISSP, SCCP or ISSAP