Randstad Information Security Analyst in Malvern, Pennsylvania

Information Security Analyst

job details:

  • location:Malvern, PA

  • salary:$25 - $35 per hour

  • date posted:Wednesday, November 21, 2018

  • job type:Contract

  • industry:Finance and Insurance

  • reference:655465

job description

Information Security Analyst

job summary:

  1. Provides first-level response and support within the department and partners with other members of

Information Security, Business Access Management, Fraud, Information Technology, and other departments as

necessary to assist with identifying and resolving security issues. This includes primary responsibility for the

Information Security Hotline (1DATA), the Information Security Requests e-mail inbox, service ticket queue, and

other channels of communication as may be used periodically.

  1. Monitors security tools alerts and reports. Responds or elevates issues to appropriate crew if anomalies are

identified or actions warranted. Monitors service level of contracted monitoring services.

  1. Monitors client environment for malicious code and other policy violations as directed. Assigns and tracks

serious violations to appropriate department and Crew Relationships crew members. Logs information security

incidents or potential incidents and violations. Logs potential intrusion alerts for analysis. Prepares various

activity reports for client departments.

  1. Investigates potential or actual information security violations or incidents and identifies areas or issues

requiring IT security related research and development efforts, under the direction of an Information Security

Supervisor or Manager.

  1. Interprets policy relating to client Information Security functions and provides guidance, as required.

Assists other department members in response to various security incidents or investigations as required.

  1. Tests, analyzes, and reports websites for blocking as appropriate. Composes, submits, and monitors service

requests to IT departments for action as required. Supports security awareness programs and special events or

activities.

  1. Maintains group and departmental documentation and communications as determined or requested by

Information Security crew, especially content in the Information Security Database, Information Security

Department Manual or CrewNet.

  1. Handles requests, approvals, and maintains logs of user requests for modem lines, proxy usage, spam filter

configuration, and other processes as appropriate. Performs quality assurance checks of processed requests,

documents results, and provides recommendations for improvement or action as appropriate.

  1. Establishes and maintains effective service relationships with other groups and departments by keeping them

informed of the status of requests, meeting team and departmental service levels and objectives, and providing

answers to routine security questions. Represents client, as a member of a team, when interacting with

industry security groups, service providers, clients and other financial institutions concerning information security

matters and the certification and accreditation of client Information Systems.

  1. Tracks service provider (ASP) and ASP reviews and reassessments. Manages the ASP questionnaires and

responses, and follows up with project teams to ensure compliance. Maintains records and files for department

dashboard and other metrics. Looking for automation capabilities in this space.

Information Security Analyst - Incident Handler

1 years of experience with network security

Experience with working Incident Response in a 24/7 SOC environment desirable, but not required

Experience with security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls &

Log Analysis and SIEM

Ability to clearly and concisely document Cybersecurity incident details and escalate appropriately, as required

Resolves security issues to determine root cause and implements corrective action with appropriate level of

assistance. Where necessary, partners with other members of Information Security, Information Technology

and business departments.

Knowledge of TCP/IP communications and how common protocols and applications work at the network level

Participates in special projects and performs other duties as assigned.

Ability to learn and operate in a dynamic environment

Must be willing to work weekends and holidays

location: Malvern, Pennsylvania

job type: Contract

salary: $25 - 35 per hour

work hours: 9am to 5pm

education: Bachelors

responsibilities:

  1. Provides first-level response and support within the department and partners with other members of

Information Security, Business Access Management, Fraud, Information Technology, and other departments as

necessary to assist with identifying and resolving security issues. This includes primary responsibility for the

Information Security Hotline (1DATA), the Information Security Requests e-mail inbox, service ticket queue, and

other channels of communication as may be used periodically.

  1. Monitors security tools alerts and reports. Responds or elevates issues to appropriate crew if anomalies are

identified or actions warranted. Monitors service level of contracted monitoring services.

  1. Monitors client environment for malicious code and other policy violations as directed. Assigns and tracks

serious violations to appropriate department and Crew Relationships crew members. Logs information security

incidents or potential incidents and violations. Logs potential intrusion alerts for analysis. Prepares various

activity reports for client departments.

  1. Investigates potential or actual information security violations or incidents and identifies areas or issues

requiring IT security related research and development efforts, under the direction of an Information Security

Supervisor or Manager.

  1. Interprets policy relating to client Information Security functions and provides guidance, as required.

Assists other department members in response to various security incidents or investigations as required.

  1. Tests, analyzes, and reports websites for blocking as appropriate. Composes, submits, and monitors service

requests to IT departments for action as required. Supports security awareness programs and special events or

activities.

  1. Maintains group and departmental documentation and communications as determined or requested by

Information Security crew, especially content in the Information Security Database, Information Security

Department Manual or CrewNet.

  1. Handles requests, approvals, and maintains logs of user requests for modem lines, proxy usage, spam filter

configuration, and other processes as appropriate. Performs quality assurance checks of processed requests,

documents results, and provides recommendations for improvement or action as appropriate.

  1. Establishes and maintains effective service relationships with other groups and departments by keeping them

informed of the status of requests, meeting team and departmental service levels and objectives, and providing

answers to routine security questions. Represents client, as a member of a team, when interacting with

industry security groups, service providers, clients and other financial institutions concerning information security

matters and the certification and accreditation of client Information Systems.

  1. Tracks service provider (ASP) and ASP reviews and reassessments. Manages the ASP questionnaires and

responses, and follows up with project teams to ensure compliance. Maintains records and files for department

dashboard and other metrics. Looking for automation capabilities in this space.

Information Security Analyst - Incident Handler

1 years of experience with network security

Experience with working Incident Response in a 24/7 SOC environment desirable, but not required

Experience with security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls &

Log Analysis and SIEM

Ability to clearly and concisely document Cybersecurity incident details and escalate appropriately, as required

Resolves security issues to determine root cause and implements corrective action with appropriate level of

assistance. Where necessary, partners with other members of Information Security, Information Technology

and business departments.

Knowledge of TCP/IP communications and how common protocols and applications work at the network level

Participates in special projects and performs other duties as assigned.

Ability to learn and operate in a dynamic environment

Must be willing to work weekends and holidays

qualifications:

  1. Provides first-level response and support within the department and partners with other members of

Information Security, Business Access Management, Fraud, Information Technology, and other departments as

necessary to assist with identifying and resolving security issues. This includes primary responsibility for the

Information Security Hotline (1DATA), the Information Security Requests e-mail inbox, service ticket queue, and

other channels of communication as may be used periodically.

  1. Monitors security tools alerts and reports. Responds or elevates issues to appropriate crew if anomalies are

identified or actions warranted. Monitors service level of contracted monitoring services.

  1. Monitors client environment for malicious code and other policy violations as directed. Assigns and tracks

serious violations to appropriate department and Crew Relationships crew members. Logs information security

incidents or potential incidents and violations. Logs potential intrusion alerts for analysis. Prepares various

activity reports for client departments.

  1. Investigates potential or actual information security violations or incidents and identifies areas or issues

requiring IT security related research and development efforts, under the direction of an Information Security

Supervisor or Manager.

  1. Interprets policy relating to client Information Security functions and provides guidance, as required.

Assists other department members in response to various security incidents or investigations as required.

  1. Tests, analyzes, and reports websites for blocking as appropriate. Composes, submits, and monitors service

requests to IT departments for action as required. Supports security awareness programs and special events or

activities.

  1. Maintains group and departmental documentation and communications as determined or requested by

Information Security crew, especially content in the Information Security Database, Information Security

Department Manual or CrewNet.

  1. Handles requests, approvals, and maintains logs of user requests for modem lines, proxy usage, spam filter

configuration, and other processes as appropriate. Performs quality assurance checks of processed requests,

documents results, and provides recommendations for improvement or action as appropriate.

  1. Establishes and maintains effective service relationships with other groups and departments by keeping them

informed of the status of requests, meeting team and departmental service levels and objectives, and providing

answers to routine security questions. Represents client, as a member of a team, when interacting with

industry security groups, service providers, clients and other financial institutions concerning information security

matters and the certification and accreditation of client Information Systems.

  1. Tracks service provider (ASP) and ASP reviews and reassessments. Manages the ASP questionnaires and

responses, and follows up with project teams to ensure compliance. Maintains records and files for department

dashboard and other metrics. Looking for automation capabilities in this space.

Information Security Analyst - Incident Handler

1 years of experience with network security

Experience with working Incident Response in a 24/7 SOC environment desirable, but not required

Experience with security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls &

Log Analysis and SIEM

Ability to clearly and concisely document Cybersecurity incident details and escalate appropriately, as required

Resolves security issues to determine root cause and implements corrective action with appropriate level of

assistance. Where necessary, partners with other members of Information Security, Information Technology

and business departments.

Knowledge of TCP/IP communications and how common protocols and applications work at the network level

Participates in special projects and performs other duties as assigned.

Ability to learn and operate in a dynamic environment

Must be willing to work weekends and holidays

skills: 1. Provides first-level response and support within the department and partners with other members of

Information Security, Business Access Management, Fraud, Information Technology, and other departments as

necessary to assist with identifying and resolving security issues. This includes primary responsibility for the

Information Security Hotline (1DATA), the Information Security Requests e-mail inbox, service ticket queue, and

other channels of communication as may be used periodically.

  1. Monitors security tools alerts and reports. Responds or elevates issues to appropriate crew if anomalies are

identified or actions warranted. Monitors service level of contracted monitoring services.

  1. Monitors client environment for malicious code and other policy violations as directed. Assigns and tracks

serious violations to appropriate department and Crew Relationships crew members. Logs information security

incidents or potential incidents and violations. Logs potential intrusion alerts for analysis. Prepares various

activity reports for client departments.

  1. Investigates potential or actual information security violations or incidents and identifies areas or issues

requiring IT security related research and development efforts, under the direction of an Information Security

Supervisor or Manager.

  1. Interprets policy relating to client Information Security functions and provides guidance, as required.

Assists other department members in response to various security incidents or investigations as required.

  1. Tests, analyzes, and reports websites for blocking as appropriate. Composes, submits, and monitors service

requests to IT departments for action as required. Supports security awareness programs and special events or

activities.

  1. Maintains group and departmental documentation and communications as determined or requested by

Information Security crew, especially content in the Information Security Database, Information Security

Department Manual or CrewNet.

  1. Handles requests, approvals, and maintains logs of user requests for modem lines, proxy usage, spam filter

configuration, and other processes as appropriate. Performs quality assurance checks of processed requests,

documents results, and provides recommendations for improvement or action as appropriate.

  1. Establishes and maintains effective service relationships with other groups and departments by keeping them

informed of the status of requests, meeting team and departmental service levels and objectives, and providing

answers to routine security questions. Represents client, as a member of a team, when interacting with

industry security groups, service providers, clients and other financial institutions concerning information security

matters and the certification and accreditation of client Information Systems.

  1. Tracks service provider (ASP) and ASP reviews and reassessments. Manages the ASP questionnaires and

responses, and follows up with project teams to ensure compliance. Maintains records and files for department

dashboard and other metrics. Looking for automation capabilities in this space.

Information Security Analyst - Incident Handler

1 years of experience with network security

Experience with working Incident Response in a 24/7 SOC environment desirable, but not required

Experience with security technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls &

Log Analysis and SIEM

Ability to clearly and concisely document Cybersecurity incident details and escalate appropriately, as required

Resolves security issues to determine root cause and implements corrective action with appropriate level of

assistance. Where necessary, partners with other members of Information Security, Information Technology

and business departments.

Knowledge of TCP/IP communications and how common protocols and applications work at the network level

Participates in special projects and performs other duties as assigned.

Ability to learn and operate in a dynamic environment

Must be willing to work weekends and holidays

Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.