IT Security Analyst 3

Job Description

*Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company*s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.Job duties are varied and complex; independent judgment needed. May have project lead role. Prefer 5 years relevant experience and BA/BS degree., *Oracle is seeking a Security Operations Center (SOC) analyst to provide monitoring and analysis capability for Security Operations Center (SOC) operations. The Analyst will conduct analysis of security events to include validation, remediation and where needed escalation and reporting of events of interest based. As part of the Security Operations Center, you will be part of a global Security Operations team identifying security events and coordinating the response for the relevant technical support groups, businesses at risk and service recovery teams. As a member of this fast paced team, you will execute controls to protect the infrastructure and employees against internal and external malicious attacks and infiltration.The security analyst is responsible to monitor and help maintain the security posture of the IT environments. These responsibilities include analyzing data in order to identify computer attacks and malware infections, responding to security incidents, documentation, analytical investigation and recommended proactive security threat countermeasures. Using cutting edge network behavior and anomaly detection tools, the analyst will examine, identify, and understand the nature of cyber-threats such as viruses, worms, bots, root kits and Trojan horses. Responsibilities:

• Monitoring, analysis, remediating and escalation of cyber security events
• Respond to security events and alerts utilizing enterprise security tools .
• Services monitored will include, but not limited are to SIEM, IDS/IPS, Firewall, Web Application Firewalls, and Data Loss Prevention (DLP)
• Recognize potential; successful; and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
• Document technical issues and actions for use in follow-up and investigation
• Development and execution of Standard Operating Procedures, Event Handlers and Job Aids required for successful task completion
• Work directly with system owners to identify, isolate and re-mediate malware and other security incidents
• Analyze malware using reverse engineering and forensic tools
• Identify, analyze, and document malicious network or system activity and determine sophistication, priority, and threat level of computer security related attacks
• Key contributor in various facets of incident response including notification, escalation response and post incident review
• Experience managing, responding to and resolving situations caused by malicious attacks
• Ability to analyze information to identify network threats such as scans, computer viruses or complex attacks
• Perform analysis on logs, traffic flows, and other activities to identify malicious activity
• Enhance existing incident response methods, tools and processes which provide the organization value by reducing risk

Contribute towards improving incident response delivery by leveraging lessons learnedPreferred Qualifications:

• Bachelor s degree or equivalent combination of education and experience in computer science, computer engineering, Electronics, mathematics or related field
• 3 years IT security experience which includes networking, end-point and system level security suites.
• Good working knowledge of: server platforms (UNIX, Windows etc.), networking, security (Firewalls, IDS/IPS, proxy systems etc.)
• Knowledge of IT security best practices, common attack types and detection / prevention methods.
• Understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network infrastructure
• Understanding of malware infection vectors, identification and remediation techniques
• Experience in security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience
• Security processes and technologies including threat analysis, security monitoring and security technologies like IDS/IPS, DDoS prevention technologies
• Experience in following incident response procedures and standards, strong communication skills and ability to articulate events to senior management
• Dedicated and self-driven desire to research current information security landscape and threats
• Have excellent written and verbal communication skills
• Possess the ability to adjust and adapt to changing priorities in a dynamic environment
• Be able to multi-task and be pro-active in addressing issues and requests
• Possess technical acumen and the ability to understand and interpret technical specifications

Keyskills :
sieminformation securitynetworkingit security best practicesdata loss preventionsecurity operations centerit securitycyber securitysecurity toolswindows supportloss preventionweb applicationthreat analysis