Job Summary:
Able to provide guidance in all areas relating to information security in order to align and establish information security and strategy with business requirements.
Primary Job Responsibilities:
Assist with audits of corporate information systems to ensure compliance with security policies, NIST security controls, PCI-DSS and applicable state and federal laws and regulations.
Identifies functionality requirements, performs implementation and security administration of tools (e.g. SIEM, vulnerability management, web application firewall).
Establishes control-related standards and procedures and prepares project status reports for management.
Designs and coordinates business resumption and recovery test and evaluation plans for security, in support of disaster recovery and business continuity plans.
Identifies potential risk items and subsequent remediation of vulnerabilities in the environment.
Supports day-to-day monitoring of logs and alerts from firewalls, log management, intrusion detection systems and content filtering controls, etc.
Performs forensic analysis and investigation of log alerts and malware.
Provides security analysis and guidance to the information security analyst and administrator team members.
Provides technical problem solving in configuration and utilization of all security enabled applications, systems and network devices.
Provides technical analysis of commercial and government customer requirements and controls.
Perform other related assigned duties as necessary to complete the Primary Job Responsibilities as described above.
