Description
Job Description:
The position performs security administration and analysis duties for the Desktop Services Center (DSC).
Responsibilities include:
Manages access on departmental resources
Develop and review compliance and exception reports for software security patch currency
Monitors departmental IT resources and identify security violations.
Manage Microsoft Active Directory Group Policy Objects
Conduct risk management assessments of information assets in accordance with the Federal Reserve System Risk Management Process
Coordinate and conduct COSO/SOX activities pertaining to general desktop computer controls
Provide Level II technical support for desktop information security related issues
Provide technical consulting and advice to management regarding information security practices and procedures
Minimum of 3 years†Information Security experience specifically in in a Windows, UNIX or Macintosh Environment within a medium to large organization.
Minimum of 2 year experience in the following areas:
Active Directory security administration
Group Policy Object management
NTFS file and share point permission administration
Conducting and reporting the results of access and compliance reviews
Assessing Risk Management
End-user security support for a medium to large organization
Minimum of 1 year experience in the development and use of MS SQL queries
Strong knowledge of Microsoft products including Windows, Office 2013 and Internet Explorer
Education and Experience:
Bachelor's degree in Information Technology or related field or commensurate experience
Experience in the following is preferred:
Competencies with security report design, generation, and review
Using processes as it pertains to controls, data ownership and classification, and threat management
Using Risk Management Processes
Desktop management using Microsoft Systems Center Configuration Manager
OSX/Casper and/or Linux Security administration
NIST Risk Management Processes
SharePoint Security Administration
PowerShell
Microsoft Office Tools
Symantec Bindview
The following certifications are a plus:
CISSP
MCITP - Enterprise Administrator on Windows Server 2008 R2
MCSA - Windows 7 and/or Windows 8