Systems Security Analyst
Job Summary
The System Security Analyst is responsible for the security of internal IT infrastructure. The position has responsibility for internal business systems, end-user devices, and networks. This is an individual contributor role with responsibility for security monitoring, patch and vulnerability analysis and application, patch automation, and ensuring internal infrastructures vulnerability and patch management are aligned-to internal operating level agreements.
Roles and Responsibility (list in order of importance)
- Analyze vulnerabilities and recommended patches Monitor and maintain health, performance, capacity, and security of the infrastructure.
- Build automation platform(s) with process visibility in Jira Service Desk and complete documentation in Confluence
- Implement centralized, aggregated, drillable, monitoring and reporting for all internal managed systems, devices, and networks.
- Ensure all internal and customer-managed systems, devices, and networks are up-to-date with the latest appropriate patches, and that vulnerabilities have been remediated.
- Monitor for and perform emergency patch and vulnerability management according to industry and vendor intelligence.
- Ensures all phases of patching and support, including installation, upgrade, security, OS patches, upgrades, and configurations are properly implemented, monitored, and tracked.
Required Qualifications
Years of Experience in Related Field: 3
Education: Bachelor's Degree from an accredited institution in a relevant technical field
Technical/Specialized Knowledge, Skills, and Abilities:
- Requires knowledge of job area obtained through advanced education combined with experience.
- Experience with enterprise vulnerability and patch management.
- Experience with automation of vulnerability and patch management on public-cloud environments.
- Experience with scripting for Linux, Windows, and Networks.
- Experience with scripting to automate IT tasks and processes.
- Experience with Windows, Linux, and application patching.
- Experience with cloud networking and deep understanding of TCP/IP.
- Ability to communicate technical concepts to a focused audience of technical and non-technical employees.
Preferred Qualifications
- CISSP, CISA, ITIL, PMP
- Experience with ISO 27000 certification
- Experience with SOC 1 & SOC 2 certification
- ITIL v3 certifications
Working Conditions
Work is primarily sedentary in nature; no special demands required.
#LI-NR1
#LI-REMOTE