This site uses cookies. To find out more, see our Cookies Policy

Information Technology Security Analyst in Lake Zurich, IL at Dovenmuehle

Date Posted: 4/5/2018

Job Snapshot

Job Description

Information Technology Security Analyst 


Job Description:


  • Proactively identify and analyze internal and external threats, malware, and unauthorized access.


  • Perform root cause analysis, make and implement recommendations on improvements


  • Track information regarding intrusion events, security incidents, and other threat indications and warning information.


  • Recommend and implement threat countermeasures and controls


  • Work with other business and IT functions involved in security and privacy matters


  • Support the security program strategy and stay current with evolving technologies such as cloud, mobile, virtualization, access control, and their security implications


  • Reviews security and network events that are populated in a security information and event management (SIEM) system.


  • Investigate intrusion attempts and perform in-depth analysis of exploits.


  • Provide network intrusion detection expertise to support timely and effective decision making of when to declare an incident.



  • Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident.


  • Documents all activities during an incident and provides leadership with status updates during the life cycle of the incident.



  • Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions.


 


Job Requirements

Requirements:

  • Strong communication skills including the ability to communicate clearly and collaborate with technical team members as well as non-technical and business personnel
  • BS in Computer Science and/or related technical field or equivalent experience.
  • Minimum of 3 years of progressive experience in information Security
  • Self-Motivated individual with solid analytical and problem-solving skills.
  • Strong desire to learn new security tools and technology.
  • Working knowledge of Windows Server and Desktop Operating Systems, Active Directory, Linux and SQL databases, Virtualization, encryption and PKI.
  • Understanding of SANS Critical Security Controls or ISO Computer Security Standards.
  • Knowledge of TCP/IP, switching, routing, VLANs and VPNs, Firewalls and Unified Threat Management (UTM) technologies. 
  • Understanding of Security Incident and Event Management (SIEM).
  • Experience with Intrusion Detection/Prevention Systems (IDS/IPS) technologies, Snort, Wireshark, Security Onion.
At least one CISSP, CEH, SANS and/or similar professional security certifications required.