I.T. Security Analyst

Confie Insurance Group 5 reviews – Huntington Beach, CA

Responsible for performing IT Audits, PCI Compliance Audits, risk assessment, security analysis, and for developing remediation plans. Able to work with little supervision while supporting security programs as part of the security response team. Professional image and good communication skills are a must, as this person will make presentations. Good written communication skills required as person will be responsible for preparation of formal reports.

IT Security Administration: Primary goal is to reduce downtime and maintain the capacity for future growth due to security issues within Systems and Networks

Help develop & implement IT Security standards and best practices to ensure a high-degree of user satisfaction
Documentation: Create and maintain comprehensive documentation for all implemented security systems/networks and update for each systems/network changes

Logging: Monitor and maintain centralized logging server aggregating logs from network devices and critical servers
Perform the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with industry best practices
Solid knowledge of server administration and management: Setup, install, configure, administer, maintain, monitor and support physical and virtual servers including Windows, Linux and Vmware ESX / Vsphere, and other Server Applications products

Lead/drive processes to identify security vulnerabilities with networks & systems; provide technical advice & support to ensure vulnerabilities are addressed promptly
Developing, implementing and maintaining internal procedures to ensure data security, including incident response handling

PCI Audits. Evaluating and improving the existing PCI security framework within the organization
Develop and collaborate with efforts for Business Continuity Planning and Disaster Recovery
Demonstrated experience with managing and ensuring the timely response and investigations of security events and incidents by the security operations center

Solid understanding of log and monitoring management systems, security event monitoring systems, network-based and host-based intrusion detection systems, firewall technologies, malware detection and enterprise-level antivirus solutions/systems and encryptions standards
Experience in process and policy development
Strong ability to communicate with external parties
Work independently with very little supervision while providing clear documented activities

Job Requirements

Bachelor’s degree in computer science, engineering or equivalent IT based experience
Minimum 7 years of experience in information technology security or equivalent combination of education and experience
CISSP, CISM or SANS GIAC certifications
Knowledge and experience using routers and firewalls
Knowledge and experience with Pentesting
Expertise with SQL Server and web servers
Knowledge on security monitoring tools such as UTM, IPS, IDS and other security appliances
Must be very comfortable with technical elements of network security and design, to include TCP/IP, firewalls, IPS/IDS, routers
Understanding of WAN, MPLS, and technologies such as VoIP beneficial
Excellent attitude and interpersonal skills
Deep technical knowledge of network infrastructure and design. Must understand routing protocols, various network protocols/ports and configuration of network routers/switches.
Knowledge of malware/virus mitigation strategies
Experience with patch management technologies and strategies
Must understand Active Directories from a security view point
Familiar with mobile and email security
Problem-solving skills to resolve issues
Must be willing to work outside normal business hours as needed


Leave a Reply