• Senior Security Operations Analyst

    Job Locations US-IA-Iowa City
    Posted Date 2 weeks ago(4/9/2018 9:42 AM)
    Job ID
    2018-1208
    # of Openings
    1
    Category
    Business Operations
    Travel
    Up to 25% Travel
  • Overview

    ACT is a nonprofit organization helping people achieve educational and workplace success.  Our programs are designed to boost lifelong learning in schools and workplaces around the world. Whether it's guiding students along their learning paths, enabling companies to develop their workforce, fostering parent, teacher, and counselor understanding of student progress, guiding job seekers toward career success, or informing policymakers about education and workforce issues. ACT is passionate about making a difference in all we do.

     

    Learn more about working at ACT at act.org!

    Responsibilities

    The Senior Security Operations Analyst is a technical expert in the security domain and will work with Information Technology (IT) management and staff to ensure the protection and confidentiality of ACT’s informational assets; participate in key information security initiatives and support the ACT Information Security Program related to security requirements in ACT’s products, services and systems; and work collaboratively with Information Technology, Internal Audit (ARS), IT Compliance and ACT’s IT service providers in the identification and management of Information Security risks.

    Typical work-related activities include:

    • Maintain and support ACT Security tools with experience in the following recommended:
      • Vulnerability Scanning: Tenable Nessus and other 3rd party scanning tools
      • DLP solutions: McAfee and Office 365
      • Antivirus: McAfee
      • Account creation\automation and entitlement: Adaxes and SailPoint
      • Web filtering: Cisco’s ASA web filtering tool,
      • Firewall management: Cisco’s ASA
      • SOC logging and monitoring: Rapid7
    • Strong background with access management in the Active Directory and Unix LDAP environments.
    • Understanding and hands-on use of AWS’s Cloud Security solutions.
    • Maintain, support and develop script (PowerShell for Windows and UNIX shell scripts) for reporting and cleansing of user accounts.
    • Work with and understand Internal and External firewalls
    • Conduct vulnerability assessments with Tenable’s Nessus tool and drive the resulting remediation activities.
    • Work with ACT’s security partners ensuring that they are monitoring and reporting on vulnerabilities discovered in ACT’s environment.
    • Provide 24x7 support on a rotated schedule.
    • Assist with ACT’s security incident response process.
    • Recommend improvements to security policies, procedures and guidelines and develop monthly metrics
    • Assist in the evaluation and use of security technologies and tools.

     

    Qualifications

    Minimum Qualifications:

    Education:

    • Bachelor’s degree in a related area required; preferably in computer science, information systems or information security
    • Possession of a current security certification is a plus. (CISM, ECSA, or similar GIAC security certifications relating).
    • Or an equivalent combination of education and experience from which comparable knowledge and abilities can be acquired.

     

    Experience:

    • A minimum of 5 years of related experience in the Information Security field that includes experience working with IT security practices and technologies, the use of established IT security controls and methods and security tools like Nessus, McAfee AV, and other similar tools.
    • Experience with Entitlement tools and Content Filter tools

     

    Knowledge, Skills and Abilities:

    • A demonstrated knowledge of regulatory or compliance requirements as well as a demonstrated knowledge of security frameworks (NIST 800-53, CIS Critical Security Controls).
    • Applicants must also possess:
      • Excellent communication skills
      • Ability to interact with individuals at all levels of the organization
      • Ability to exercise sound judgement and discretion while handling confidential matters and information
      • Excellent decision making skills with a “hands-on” problem solving approach
      • Ability to manage multiple high-priority initiatives
      • Demonstrated ability to establish effective working relationships and collaborative work approaches with both internal and external contacts
      • Strong customer service skills
      • Strong attention to detail and organization skills
      • Must be a self-motivator and able to work both independently and as part of a team
      • Ability to work in a dynamic, changing environment
      • Ability to generate procedural documentation that will be used by technical staff as well as customers

     

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.