Endpoint Security Analyst

Staffing Future API

1 day ago

To Apply for this Job Click Here

Job Title: Endpoint Security Analyst
Location: Tallahassee, FL
Job Type: Contract

Referral Fee:
Employment Eligibility: Gravity cannot transfer nor sponsor a work visa for this position. Applicants must be eligible to work in the U.S. for any employer directly

Position Overview
The Endpoint Security Analyst Develops, evaluates and manages systems security across the enterprise. Areas of concentration include account management, password auditing, network based and Web application-based vulnerability scanning, virus management and intrusion detection. Requires technical expertise in systems administration and security tools, combined with the knowledge of security practices and procedures. Assists in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines). Prepares status reports on security matters to develop security risk analysis scenarios and response procedures.
Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls. Involved in the evaluation of products and/or procedures to enhance productivity and effectiveness. Provides direct support to the business and IT staff for systems security related issues. Educates users on systems security standards and procedures. Must have broad technical knowledge of network operating systems (e.g., UNIX, NT).

Duties and Responsibilities

Serve as a member of the Computer Security Incident Response Team. Duties includes researching incidents, identifying corrective actions, documenting status and coordinating responses to Computer Security Incidents.
Responsible for the tracking and monitoring of endpoint software viruses. Enforces endpoint security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security breaches, exceptions, updates, and maintains and documents security controls.
Work in conjunction with the Department’s Patch Management and Configuration Team in identifying secure configurations for standard products. Provide support/information as needed for implementation of secure baselines through package roll out and/or group policy. After implementation of secure baselines, use tools to review and ensure compliance with established baselines.
Responsible for the administration and maintenance of endpoint vulnerability products, endpoint vulnerability risk reporting, and routine endpoint vulnerability scanning

Required Experience and Skills

4 years of experience as a Security Analyst
Knowledge in the use of appropriate security controls to protect the confidentiality, integrity and availability of information technology resources.
Knowledge of, and experience with, various computing technologies such as, but not limited to: Windows, Windows Server, Transmission Control Protocol/Internet Protocol (TCP/IP)
Knowledge of vulnerability management tools.
Knowledge in the use of information security practices and standards such as NIST, CIS Critical Security Controls and the Florida Cybersecurity Standards (74-2 Florida Administrative 60GG-2). Ability to review, assess and document compliance with standards.
Knowledge of Microsoft Systems Center Configuration Manager (SCCM) and other Microsoft support tools/technologies such as Group Policy and PowerShell.
Knowledge of the application of operating system security settings through direct manipulation of the registry.
Knowledge of Security Information and Event Management (SEIM) tools. Ability to utilize, configure and manage SPLUNK preferred but not required.
Skills in applying, analyzing and assessing information systems and security controls.
Skilled in the detection of software and hardware security problems.
Ability to analyze complex technical architecture for security issues.
Ability to be self-motivated, detail-oriented with excellent follow through.
Ability to assess and analyze risk and provide recommendations to successfully manage risk.