| Need - Enterprise Application Consultant - Nashville, Tennessee at Nashville, Tennessee, USA |
| Email: [email protected] |
| From: Pranjali Kumari, Infologitech [email protected] Reply to: [email protected] Job Description: Need Local to Tennessee DOT is seeking a Senior Information Security Analyst to join our team. This individual will act as the front line defense by ensuring that security alerts are reviewed, remediated, or escalated with appropriate urgency and all response actions are documented accurately. This is a fundamental role in protecting the information assets of the organization by effectively identifying and responding to potential indicators of compromise or attack. This role will focus on TDOTs ITS (Intelligent Transportation Systems) network and our 4 TMCs (Traffic Management Centers) across the state. Responsibilities and Duties Enforce policy, guidance, and training requirements according to Best Business Practices BBPs Ensure implementation of system updates, reporting, and compliance procedures Ensure users meet the requisite favorable security investigations, clearances, authorization, need-to-know, and security responsibilities before granting access to the TMC information Ensure users receive initial and annual Cyber Security Awareness training, as well as troubleshoot issues and repair systems Ensure log files and audits are maintained and reviewed for all systems and that authentication (for example, password) policies are audited for compliance Prepare, distribute, and maintain security plans Review and evaluate the effects on security of system changes Ensure that all Systems within their area of responsibility are certified, accredited, and reaccredited Ensure system recovery processes are monitored and that security features and procedures are properly restored Maintain current software inventory and ensure security related documentation is current and accessible to properly authorized individuals Monitor alerts, detections, or other indicators of compromise/attack from a variety of information security solutions. Investigate, contain, eradicate, and/or escalate security detections as appropriate Document and generate reports of detections and response actions for review by management and other stakeholders Assist in the analysis of vulnerabilities Monitor security platforms health for errors, misconfigurations, or performance alerts Leverage SIEM platform by creating and executing search queries, dashboards, and alerts to identify threats and assist in investigations. Support end-users and other stakeholders requests related to information security service Perform control testing and other risk management activities Provide information in response to assessments and audits Maintain an understanding of the systems, solutions, and technologies deployed on the ITS network. Qualifications and Skills Experience in Information Security and/or Information Technology in an operations or support role Prior experience in an information security incident response role. Experience troubleshooting and/or securing computer systems and networks Experience with SIEM platforms Experience reviewing logs, scripting tasks, or creating structured queries/regex searches Familiarity with Cisco security products and operational practices Awareness of Information Security best practices and regulatory requirements Bachelors degree in Computer Science, IS or Information Security a plus CISSP, CISM, GIAC and/or similar certifications a plus Strong professional communication skills, both verbal and written Strong understanding of computer systems and networking principles Strong analytical skills and strong knowledge of data analysis tools Ability to parse logs, create queries, and perform root cause analysis of events Programming/Scripting skills are a plus Understanding of logical security, user access and identity management Detail oriented and process focused with a strong appreciation of completeness and accuracy Ability to independently prioritize work and complete assignments with minimal oversight Team player who is energized by problem solving and finding solutions together to deliver maximum benefit. Ability to adjust communication style/content to interact with IT and business professionals. Work closely with Cyber Security Architect and network security team to implement and maintain secure network design Participate in planning and executing the SDLC process Provide information security expertise to system development teams Works with network monitoring and management applications and creating highly-reproduceableconfiguration scripts and templates Qualifications CISM (security) No CISSP (security) No GSEC (security) No Regards, Pranjali Kumari US IT Recruiter | InfoLogitech, Inc. 3 Independence Way, Suite 117, Princeton, NJ - 08540 Direct 609-212-0619 Email: [email protected]| www.infologitech.com Keywords: information technology New Jersey |
| [email protected] View all |
| Mon Sep 11 18:28:00 UTC 2023 |