Information Security Analyst

Location: Fenton, Missouri, United States Minor Outlying I
Date Posted: 19-12-2015
Based at our Fenton, Missouri headquarters you will protect information assets by establishing and enforcing system access controls; managing and monitoring compliance activities, analyzing security problems and designing solutions.
Duties Include:
  • Maintain and update elements of a comprehensive information security program and methodologies for implementation.
  • Manages compliance related activities to document, schedule and collect documentation requests and procedural information to support audit and assessment activities, including SOX, PCI, and internal audit reviews.
  • Manages security monitoring and vulnerability scanning systems and applications.
  • Provides assessment services for selection of third party service providers.
  • Evaluates information risk and potential vulnerabilities and promotes information security awareness.
  • Coordinates with responsible stakeholders in corporate and business unit IT teams on all information security related activities.
  • Document and assess risk levels and responds to incidents on information systems, including networks, applications, infrastructure systems, and other IT systems.
  • Consults and interfaces with network administrators, system administrators, desktop support staff, IT staff, developers, and non-IT departments on security issues and requirements.
  • Improves security efficiency, streamlines/automates work processes and works collaboratively with IT department personnel to accomplish objectives.
  • Gather information from other IT staff and non-IT staff to obtain information regarding security problems to networks, servers and applications.
  • 3-5+ years in an Information Security specialist or lead analyst role, or other relevant job experience required across multiple security domains (i.e. access control, network security, system security, application security, etc.)
  • Bachelor’s degree from a four-year college or university, or equivalent required.
  • Knowledge of Information Security compliance requirements including ISO27001, PCI, SOX, and HIPAA.
  • Knowledge of data security domains including access control, encryption, intrusion detection, firewalls, malware protection, etc.
  • Experience in a technical security role such as with network, firewall and/or system security operational responsibilities
  • Experience in compliance/vulnerability monitoring tools such as Nessus, Webinspect, etc…
  • Must have superior communication and customer service skills.
  • Security certification such as CISA, CISSP, CISM, or equivalent.
  • Experience in administration of third party/vendor security compliance monitoring.
  • Experience and knowledge of security/access control administration best practices associated with applications, servers and networks associated with Microsoft Active Directory, ADFS, SAML, etc.
  • Experience solving security controls with technologies associated with: network connectivity, Internet access, wireless access, email, etc.
  • Ability to research and recommend purchases of tools to maintain and improve information security systems.
  • Experience implementing security controls for systems hosting in IaaS, PaaS and Saas cloud services.
The Timberline Group
Phone: 636-209-5537
PO Box 565, Sullivan, Mo 63080
"Delivering quality solutions through quality people"
this job portal is powered by CATS