Description
My client is seeking Information Security AnalystYou will be required to manage and report operational information security risk, using IT security tools and processes. Assist customer service and IT teams to manage the outputs of security systems.
Responsibilities:
Recognises, investigates and reconciles violation reports and logs generated by detection systems in accordance with established procedures and security standards. Examples include but are not limited to responding to and reporting from automated alerting systems, auditing logs, IDS/IDP logs, anti-virus and firewall systems.
Assists in the assessment of the potential impact on existing access security mechanisms of specific planned technical changes, in order to help ensure that potential compromise or weakening of existing security controls is minimised. Also assists in the evaluation, testing and implementation of such changes. Ensures that co-ordination and change control are applied to technical specifications and to the technical infrastructure.
Essential
Experience of Arcsight, Qualys, Tripwire, McAfee information security tools.
Practical knowledge of enterprise IT and technologies
MS Office skills
Advantegeous:
- Work experience within an IT or audit department
- project/ service skills training
- In depth understanding of IT technology infrastructure and service management
- Experience of IBM Guardium, Centrify, RSA, Microsoft Forefront, Cisco, Websense tools
- Understanding of risk management
- Formal training in computer science and/ or IT skills
- Security Qualification (e.g. CISA/CISM/CISSP/SSCP, SANS, CEH etc)