The Information Security Analyst (ISA) primary duties involve managing the day to day risk to EarthLink’s IT assets. The ISA monitors real time security events, scans IT assets for vulnerabilities, coordinates remediation activities and investigates potential security incidents.
The ISA also manages the consumer anti-spam platform which protects over 1M EarthLink consumer customers by investigating reports of spam, phishing and computer viruses originating on and off EarthLink’s network, working with customers and other EarthLink employees to investigate and take action on violations of EarthLink’s Acceptable Use Policy (AUP).
The ISA utilizes a range of skills and is responsible for: managing tickets in EIS work queue, analyzing, reporting and making recommendations based on spam trends, conducting investigations into customer violations of EarthLink’s AUP, maintaining relations with other departments by sharing shares ideas, conducting training and maintaining best practices to help reduce the impact of spam, phishers and other illegal content.
This position is included in EIS’ after hours on call rotation to coordinate IT security incident response and escalated customer security issues.
Responsibilities include but are not limited to:
Monitoring and investigating security events in the company’s SIEM tool.
Coordinate IT security incident response process which includes coordinating the evaluation and response for actual or potential security events.
Evaluate state of IT asset vulnerability by conducting vulnerability scans of EarthLink infrastructure and applications, evaluating risk and coordinating remediation activities.
Review infrastructure vulnerability scan reports, work with Enterprise Information Security Engineers to establish risk, create Remedy tickets and assign to the appropriate team for mitigation, maintain reporting repository of vulnerabilities, report weekly on outstanding vulnerability status and hold meetings to identify and help resolve mitigation issues.
Investigate and resolve Earthlink Acceptable Use Violation (AUP) complaints including spamming, phishing, child pornography and other unacceptable use of services by investigating information contained in email headers, web sites, server logs, radius logs and pop records.
Maintain inbound spam reputation filter list by reviewing consolidated EarthLink customer spam complaint reporting and adding IP addresses to block spam. Review and assess the validity of reputation filter unblock requests and use judgment to remove low risk IPs from the reputation filter list.
Accept, investigate and resolve escalated customer affecting issues from other departments. This includes investigating the details of an incident and contacting the customer or related parties via phone, email, and postal mail as necessary.
Review spam complaints from EarthLink employees and evaluate reputation and signature based filters for effectiveness. Escalate issues such as unidentified virus attachments to anti-spam vendor for resolution.
Aggregate reports and analyze spam and fraud sign up trends and make recommendations to
Senior Manager, EIS Operations about process and automation changes aimed at reducing risk from spam and viruses
Analyze and investigate unauthorized use of restricted and confidential EarthLink customer data by outsourced agents using EarthLink systems and reports to identify trends and establish exposure.
Conduct additional analysis into threats identified against IT assets and work with IT peers to remediate and resolve outstanding issues.
- Minimum of 2 years working in a technical environment, 2 years UNIX experience preferred
- Experience in telecommunications, ISP, email or technical related industry
- Must be moderately proficient in Unix/Linux command line interface (Unix/Linux skills, Windows, Proficiency in Excel and Access, Core internet protocols (TCP/IP, DNS, HTTP, SMTP, SSL)
- Focus and attention to detail, track and report on trends, have a strong work ethic
- Must have strong communication skills, both verbal and writing skills
- Must have a desire for success and willingness to learn.
- Work successfully in a team setting with little oversight
EarthLink Inc. - 10 months ago
Some of us spend way too much time online, and EarthLink is OK with that. The company provides Internet connections to more than 1 million...