Security Analyst I & II

Synergis IT

Apply Now

Security Analysts 1 & 2

Contract to hire

Tucker, GA (onsite role)

Job Description:

Security Analyst I:

 

The Security Analyst I plays a key role in securing industrial control systems for the electric grid and is the first line of defense against security threats. To perform this essential function, the Security Analyst must demonstrate a high degree of technical and analytical capability, as well as an ability to learn and adapt to quickly changing technologies, procedures, and compliance requirements. Responsible for compliance with all applicable laws, regulations, industry standards, corporate policies, guidelines and procedures, including but not limited to, RUS, OSHA, NERC, FERC and ITS requirements.

 

The Security Analyst I proactively monitors the environment for changes in asset inventory, device configurations, and user account permissions. When changes are detected, the Security Analyst works to reconcile these changes to appropriate authorization records. The Security Analyst reviews and responds to security alerts, resolves false-positive alerts and alerts associated with non-malicious activity, and escalates alerts for remediation. The Security Analyst also manages support requests from end-users; resolves tier 1 requests, such as user password resets and application access problems; facilitates routing of user access requests for authorization; and escalates and routes other requests to facilitate rapid resolution.

 

The Security Analyst I actively monitors the threat landscape and sources of threat intelligence for pending security threats to the organization. The Security Analyst I investigates and provides written reports to management on risks to the organization.

 

The Security Analyst I supports the compliance program by maintaining knowledge of NERC Critical Infrastructure Protection (CIP) standards and related policies in the areas of security event monitoring, access management, change management, and vulnerability assessments; creating and maintaining evidence of compliance with these standards and related policies; and participating in periodic reviews and activities associated with access management and vulnerability assessments.

 

Security Analyst II:

 

The Security Analyst II coordinates the organizations asset management program, works with various stakeholders to ensure the process is followed and identifies opportunities for process improvement, and ensures the Change Management Database (CMDB) is maintained in a complete, accurate, and timely manner. The Security Analyst II supports the change management program by performing post implementation review of approved change requests to ensure scope of the approved change was implemented correctly and identified security controls were not adversely affected.

 

The Security Analyst II provides second tier support for escalated security alerts, configuration changes, and user account activities. Maintains knowledge of the environment and technologies necessary to diagnose and resolve escalated events. When availability dictates, the Security Analyst II must backfill provide first tier support as needed.

 

The Security Analyst II manages key metrics to identify common problems and alerts and develops knowledge and documentation to resolve these common events; coordinates with Security Engineering team to configure various security monitoring tools and suggests additional sources for security-related events and alert configuration; identifies security alerts and events that should be tuned to reduce noise; and assists in the development and maintenance of desk procedures for the Security Analyst team.

 

The Security Analyst II supports the compliance program by maintaining knowledge of NERC Critical Infrastructure Protection (CIP) standards and related policies in the areas of security event monitoring, access management, change management, and vulnerability assessments. Creates and maintains evidence of compliance with these standards and related policies. The Security Analyst II contributes to efforts to update and improve related policies.

 

Required Qualifications:

 

Education: Bachelor's Degree in Information Systems, Computer Science, Engineering, or related field.

 

Experience:

 

Security Analyst I- Requires 2 years of experience in an industrial control systems environment, information technology, or information security role. 

 

Security Analyst II– Requires 4 or more years of experience in an industrial control systems environment, information technology, or information security role. 

 

Equivalent Experience:

 

Security Analyst I-

 

Associates degree in Information Systems, Computer Science, Engineering, or related field with 2 or more years of experience in an industrial control systems environment, information technology, or information security role.

High school diploma with 4 or more years of experience in an industrial control systems environment, information technology, or information security role.

Security Analyst II-

 

Associates degree in Information Systems, Computer Science, Engineering, or related field with 4 or more years of experience in an industrial control systems environment, information technology, or information security role.

High school diploma with 6 or more years of experience in an industrial control systems environment, information technology, or information security role.

For immediate consideration please contact Denise Wicks at contact button below or call 770-346-7205.

Synergis serves a myriad of clients across nearly all industries, from start-ups to Fortune 100 companies. The outcomes of these relationships are demonstrated in a growing list of more than 300 clients and industry recognition by Inc. magazine and the Atlanta Business Chronicle. From its foundation in 1997, Synergis has been successfully recruiting and placing IT professionals in all areas of information technology. Synergis has been successfully recruiting and placing IT professionals for over 20 years. For more information about Synergis, please visit the company website at www.synergishr.com

Synergis is an Equal Opportunity/Affirmative Action employer.

Apply Now

  Apply with Google   Apply with Twitter
  Apply with Github   Apply with Linkedin   Apply with Indeed
  Stack Overflow