Position: IT BA security
Location: NY
Duration: 6 Months
Need H1B Copy
Job Overview:
We are looking for a Business Analyst who is experienced in designing and documenting processes and procedures in support of IT Security/ Information Security programs. The ideal candidate will have experience in designing processes / procedures that rely on SIEM type technologies in order to detect patterns of activity that require further analysis or escalation.
This position will NOT require installation / configuration of SIEM / DLP / Threat Feed & amalgamation technologies but will instead focus on the broader design issues: Developing escalation scenarios for certain "triggers" or "event correlations" (ex: an employee suddenly is sending massive amounts of data to an external host) that indicate possible Insider Threats (ex: disclosure of data).
Additional color: The candidate will be supporting the Security Incident Response function on building out escalation processes around the Insider Threat Program, e.g. Identifying staff doing bad things such as abuse of privileged access, as well as general support of the day to day operational review function.
Ideally we would like a candidate who has specifically designed scenarios / processes / triage procedures / pattern analysis triggers. The major difference is that instead of developing scenarios for external Threats, the focus will be on developing scenarios to detect internal activity which indicates an Insider Threat.
Duties & Responsibilities:
Planning duties will include:
We are looking for a Business Analyst who is experienced in designing and documenting processes and procedures in support of IT Security/ Information Security programs
Responding to Security Events
Operational Role
Scanning fishing messages
Visio
MPP skills
Incident and Ticket Management experience
Baseline the methodology and technology
Security Architecture definition and review
Educate the project participants in their roles and responsibilities for security
Collaborate with other team members to facilitate the best recommendation
The successful candidate will be required to demonstrate they have the ability and experience to contemplate Insider Threat scenarios and develop such scenarios into escalation procedures and processes to address the risk.
Excellent communication / writing skills and documenting developed processes, procedures, and scenarios in Microsoft Visio is required. Prior experience working in this domain within a highly regulated industry sector highly preferred (ex: Finance, Banking, Insurance, Healthcare, Defense / Intelligence).
Skill, Experience & General information Required:
Educational Requirements: Preferred: BS in IT or related field
Experience: Required: 1 – 5 years with Insider Threats and/or traditional SIEM driven Threat Mgt Programs
Technical Experience: Required: Experience with SIEM / DLP technologies
Technical Certifications: Preferred: CISSP, CISA, or other relevant Security or SIEM / DLP related certification
Desirable Skills
10+ Years of technology design and implantation experience in an IT organization preferably in the financial industry.
Prior Solution Architecture Experience
Excellent written and verbal communication skills.
Worked in onshore/offshore model
Demonstration of current skills with design tools: UML, Power Designer, or the like.
Experience in Identity and Access Management (Minimum 2 years of experience)
Experience with Object Oriented Programming like Java or .Net.
Experience with software design patterns, unit testing, performance / memory analysis, and n-tier service-oriented architecture
QSA(Qualified Security Assessor) certification/experience
CISSP Certification.
Regards
Philip
You received this message because you are subscribed to the Google Groups "SureShotJobs" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sureshotjobs+unsubscribe@googlegroups.com.
To post to this group, send email to sureshotjobs@googlegroups.com.
Visit this group at http://groups.google.com/group/sureshotjobs.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment