SECURITY MANAGEMENT ANALYST - The Muscogee Nation : Job Details

SECURITY MANAGEMENT ANALYST

Description: Under general supervision, assists in the planning and implementation of IT system, business operation, and facility defenses against breaches and vulnerability issues. The Security Management Analyst role is to ensure data confidentiality, integrity and availability by assisting with audits of existing systems, and administering security policies, activities and standards.

Principal Duties and Responsibilities:

· Monitor computer networks for security issues.

· Investigate security breaches and other cybersecurity incidents.

· Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.

· Document security breaches and assess the damage they cause.

· Work with the security team to perform tests and uncover network vulnerabilities.

· Fix detected vulnerabilities to maintain a high-security standard.

· Stay current on IT security trends and news.

· Develop company-wide best practices for IT security.

· Perform penetration testing.

· Help colleagues install security software and understand information security management.

· Research security enhancements and make recommendations to management.

· Stay up-to-date on information technology trends and security standards.

· Other Functions:

· Experience in information security or related field.

· Experience with computer network penetration testing and techniques.

· Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts.

· Ability to identify and mitigate network vulnerabilities and explain how to avoid them.

· Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact.

Minimum Requirements:

· 1. BS Computer Science, and three years of experience in infrastructure security

· Must have a valid Oklahoma Driver's License.

Preferred Requirements:

1. BS Computer Science, CISSP and three years of experience in infrastructure security

a. BS Computer Science, 10 years of job-related experience, CRTSA, CNDA, CISSP, ISSAP

2. Prior experience in information security including experience in planning and executing security policies