Description:
SDI is looking for an Information Security Analyst for a 12 months contract for our client located in Milwaukee, WI.*Responsible for the configuration, deployment and support of CheckPoint NGX and Juniper firewalls, CheckPoint VPN, MacAfee WebWashers, Bluecoat Proxies, Packeteers.*Understanding of IT Infrastructure components (servers, storage, data/voice communications, etc) and how they are combined to provide secure IT solutions.*Security expertise including Firewalls, IDS, IPS, VPN, Remote Access, and Vulnerability Management.*Ability to understand the risk-based design reviews and analysis throughout the enterprise life cycle for support of the Security infrastructure.*Project resource skills - ability to work independently to complete tasks in a timely manner.*Strong understanding of TCP/IP.*Firm understanding of encryption technologies: IPSec, SSL, certificates, and public/private key infrastructure.*Comply and provide input to client information security policies, standards and procedures.*Conducts all tasks in accordance with the requirement to comply with security controls.*Responsible for the configuration, deployment and support of CheckPoint VSX Firewalls, F5 Firepass SSL/VPN, F5 BigIP Local Traffic Managers, Cisco Ironports and WCCP, AT&T ScanSafe Proxy, CheckPoint UTM Firewalls, Symantec Endpoint Protection: Firewalls and Antivirus.*The Security Operations Center (SOC) provides 24x365 monitoring and analysis of client’s global IT infrastructure.*As part of the SOC, the Security Operator (SO) will monitor for and execute in-depth analysis of unusual activity, and execute proper escalation steps, as appropriate.*The SO will also prepare and deliver monitoring reports to illustrate key program metrics and recommend potential enhancements to the overall monitoring program.As part of the SOC team, the SO’s responsibilities include:*Security Incident and Event Monitoring.*Perform research and analysis of unusual activity.*Review security incident records in incident management tools.*Correlate events from various components in the IT infrastructure to identify attacks and breaches.*Pinpoint location of compromised systems and devices.*Analyze monitoring trends and create custom reports.*Research and escalate to Tier 3 support as needed.*Recommend changes to system configurations.*Discover and report security and compliance violations.*Detect zero-day attacks.*Monitor information security websites to stay up to date on current attacks and trends.*Associate and correlate events and security incidents with individuals and their role and organization.*Providing Tier II technical expertise on post event network security log and trend analysis.*Security Incident Management.*Maintain confidentiality during sensitive situations.*Respond to incidents.*Create formal incident reports.*Research and assist with investigations.*Determine cause and decide course of remediation.*Coordinate reporting efforts and provide timely updates during incident response.*Ensure security incidents are resolved in a timely manner.*Escalate to Tier 3 support as needed.*Responsible for configuration, deployment and support of CheckPoint VSX and UTM Firewalls, F5 FirePass SSL/VPN, F5 BigIP Local Traffic Managers, Cisco IronPort and WCCP, AT&T ScanSafe Proxy, Symantec Endpoint Protection, and other security products.*Security procedure maintenance.*Maintain SOC documentation and diagrams.*Participate in the continuous improvement process and implement improvement initiatives.*Review internal and external bulletins to maintain awareness.*Provide suggestions for continuous improvement.*Participate in SOC projects and implement new SOC services.*Train SOC Operators in performing new SOC services.*VPN implementation and support.*Firm understanding of encryption technologies, including IPSec, SSL, certificates, and public/private key infrastructure.*Microsoft Office expertise, including Visio.*Ability to apply knowledge of network and computer processes, technologies and systems.*Solid analytical and problem solving skills.*Excellent English written and verbal communication and interpersonal skills.*Strong organizational and time management skills.*Ability to balance a large workload and perform multiple, concurrent activities in a fast paced and multi-site, global team environment.*Ability to maintain flexibility in a dynamic organization.*Ability to maintain updated knowledge of procedures, products and activities of assigned area and to share job knowledge expertise as appropriate.*Security monitoring systems (intrusion detection, security information event management.Schedule Requirements:*Candidates must be willing to work a determined shift in a 24x365 operational support environment.*Some substitute rotation during off-shifts, including nights and weekends may be required.*Once candidate is selected, their shift will be determined based on the business need and current shift opening. Talent and Resources, Aligned. www.superiorjobs.com EOE M/F/D/V
sologig - 11 months ago
- save job
-
block
