Analyst, Information Security
Category:
Technology
Job Function:
Technology
Department:
Information Technology-Security
Summary
The Information Security Analyst is responsible for performing cyber security and data analysis to ensure the integrity, reliability and the security of data, systems and networks. The Incumbent in this position will serve as the technical security liaison for Fulton County School departments and vendors in order to reduce risk to the District Information and Information Systems through the understanding and use of various data security technologies, applications, methodologies and industry standards.
Essential Duties
- Monitors daily threat reports and security logs for unusual events that could pose potential threats to the District’s enterprise networks or systems
- Collaborates with IT Management to develop strategies and plans to enforce security requirements, address identified risks and communicate flaws in the security systems
- Acts as a liaison between incident response leads and subject matter experts and follows up on security related task assignments to subject matter experts for remediation
- Assists engineers with troubleshooting and identifying the root cause of security related incidents, threats and updates required for remediation
- Maintains up to date knowledge on newly released security patches and monitors the patch management process to ensure software patches are effectively applied in a timely manner to reduce risk to District systems and enterprise applications
- Develops reports to share with administrators about the efficiency of security policies and recommends any changes
- Assists with the deployment and support of Data Loss Protection solutions and programs for on premise and cloud services
- Assists with ongoing Security Awareness training goals defined by the District to educate staff and students on the risks that pose potential threats to the District’s technology resources
- Assists with training technology engineers in implementing security best practices and procedures during system integration and post implementation
- Managers daily administration of District firewalls and end-user device theft prevention tools
- Assists with developing Incident Response procedures to properly detect, contain and mitigate security incidents
- Assists with establishing procedures & protocols to protect digital files and information systems against unauthorized access, modification and/or destruction
- Participates in organizational projects, as required
- Performs vulnerability testing, risk analyses and security assessments
- Assists with supporting the infrastructure during emergency situations, after-hours maintenance of Technology resources when scheduled and response to security incident support as needed or defined by service requests
- Researches, evaluates and provides recommendation for implementation of new or updated information security technologies and assist with developing business cases for security technology investments
- Performs other duties as assigned by the appropriate administrator
Required Education
Bachelor’s Degree in Information Technology specializing in Systems and Network Security or Equivalent experience (2 years of similar work level experience = 1 year of college-minimum of 8 years). A combination of experience and education may be used to meet the Bachelors Degree requirement
Certification/Licensure
One of the following, CompTIA (Security+, EC-Council Certified Security Analyst or Certified Ethical Hacker), CCNA or BCNE preferred
Experience Qualifications
Minimum of 5 years of experience within the Information Technology field, with a minimum of 1 year Information Security experience managing Firewalls and IPS technologies required; Experience working in a public school district preferred
Knowledge/Skills/Abilities
- Demonstrated very strong analytical problem solving skills using various troubleshooting technologies
- Proven record of working without extensive supervision and direction
- In-depth knowledge and understanding of information risk concepts and principles, application of security controls to meet the business objectives
- Technical knowledge of operating systems Windows/LINUX, IOS and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions and desktop security tools
- Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts
- Use of Network protocols and sniffer/packet analysis tools for troubleshooting
- Experience with the use of forensic investigative software, device theft prevention, penetration and vulnerability testing tools
- Experience with the use of Security Information and Event Management (SIEM) monitoring tools
- Knowledge of Cloud computing security controls and SaaS best practices
- Must be able to work on a time schedule and meet deadlines
- Must be able to successfully manage multiple tasks, projects and responsibilities
- Ability to apply critical thinking skills in rendering solutions to various issues
- Must be able to collaborate effectively with District personnel, the general public, and work with diverse groups of people
- Excellent communication skills both written and verbal
Working Conditions
- Normal office environment
Physical Demands
- Routine physical activity associated with normal office environment
Posting ID:
31159
Nearest Major Market: Atlanta