Home   Register   Sign In
 
Company Info

NTT DATA


CA, United States

Phone:
Web Site: www.nttdata.com

Company Profile


IT Security Analyst


col-narrow-left   

Job ID:

1836

Location:

Montpelier, VT, United States 

Category:

Information-Technology, Other
col-narrow-right   

Job Views:

235

Employment Type:

Full time, Contract to Hire - W2, Contract - W2

Posted:

07.10.2014
col-wide   

Job Description:

A group company within NTT DATA currently seeks a Security Analyst to join our team in Montpelier, Vermont. 

Position Functions or Responsibilities:
Responsible for day-to-day open systems operational security 

Manage, maintain and monitor Intrusion Prevention Systems (IPS), Web Filtering, Email Filtering, and other security and compliance products 

Review all new applications and services for security related issues and provide feedback to management as warranted 

Define and implement security requirements for new applications and upgrades 

Leads threat and vulnerability assessments 

Performs periodic vulnerability and operational practice evaluations 

Stays current with threat profiles, methods, and targets 

Performs periodic perimeter defense probes/assessments 

Facilitate the planning and implementation of appropriate security controls for projects and post-implementation operations 

Provide support for security policy development, implementation, and enforcement 

Provide support for the development and implementation of all appropriate security standards and guidelines as necessary 

Provide support for strategic security planning and plan implementation 

Provide support for security awareness and education programs 

Manage/deliver security consulting services as needed 

Maintain current knowledge of potential security threats to the web environment. 

Ensures integrity of web infrastructure and monitor web server activity 

Coordinate security defect resolution with web application developers 

Identify application vulnerabilities in production and development web systems 

Assist in the design of software and hardware architectures to enhance security of web systems 

Periodically surveys employee web use for compliance with corporate policy 

Ensure that operations, project and product security controls are consistent with the existing and planned security infrastructure 

Support the planning and implementation of appropriate security controls for projects and post-implementation operations 

Provide support for security policy development, implementation, and enforcement 

Provide support for the development and implementation of all appropriate security standards and guidelines as necessary 

Provide support for strategic security planning and plan implementation 

Provide support for security awareness and education programs 

Lead/support incident response services as needed 

Acts as lead for IAM (Identity Access Management) Program; ensure requirements/standards are adhered to 

Familiar with ISO 27000 series, COBIT, HIPAA/HITECH, and similar Governance Frameworks which have a significant IT component 

Assess Security Program maturity utilizing ISO 27002 

Basic Qualifications 

3-5 of experience in information security and/or IT risk management 

Experience with commercial and open source security applications and technologies (e.g. malware prevention, DLP, IDS/IDP, cryptography, vulnerability scanning and penetration testing), as well as related protocols and tools (e.g. SSH, SSL/TLS, snort, port scanners, rootkit detectors, etc.) 

Demonstrable knowledge of enterprise IT risks - threat tactics, techniques, and procedures –and application of relevant techniques and tools, e.g. network and application penetration tests 

Experience implementing IT controls to meet business, security or regulatory standards (e.g. SOX, PCI) and frameworks (e.g. NIST, OCTAVE, ISO27k) 

Strong analytical skills with the ability to parse requirements and relate them to appropriate security controls 

Ability to interact with personnel at all levels and across all business units and organizations, and to comprehend complex business initiatives 

Ability to work with minimal supervision. 

Excellent written and verbal communication skills 

Bachelor’s Degree in Computer Science, Information Security or similar Engineering discipline or equivalent experience 

Certification - CISSP/ISSAP 

Typical Years of Experience 

Typically requires 3-5 years relevant experience. 

Minimum Education and Certifications 

Undergraduate degree or equivalent combination of education and work experience. 

Preferred: CISSP 

Skills 

Advanced security knowledge (access control) of one or more applicable security technologies / platforms. 

Advanced knowledge of information security processes, response procedures, and various attack methods used for information theft or network intrusion 

Advanced analytical and problem-solving skills 

Advanced oral, written, and communication / presentation skills to a broad range of employees. 

Advanced knowledge of network technologies that pertains to communications, computer system environments and related infrastructures. 

Extensive experience in application and integration of globally accepted security standards. 

Physical Requirements/ Working Conditions 

Ability to physically perform general office requirements. 

Must be able to perform essential responsibilities with or without reasonable accommodations. 

Client travel including overnight domestic or international trips may be required. 

Basic Qualifications:
This is a full-time salaried position with a group company within NTT DATA. Please note, 1099 or corp-2-corp contractors will NOT be considered. This position is only available to those interested in direct staff employment opportunities. We offer a full comprehensive benefits package that starts from your first day of employment. 


© 2017 Powered by Rootjobs     About Us   Sitemap   Terms and Conditions   Privacy Policy   Mobile Version     Twitter RSS LinkedIn Facebook