Sr. IT Security Analyst

  • Job ref:


  • Location:

    Dunwoody, United States

  • Sector:

    Information Technology

  • Contact:

    Jon Bass

  • Published:

    over 1 year ago

Sr. Security Analyst
Direct Hire
Location:  Atlanta, GA (Dunwoody/Perimeter area)
We have an exciting opportunity for a Sr. Security Analyst to join a disruptive startup that has the backing of Fortune 500 leaders.  This is a direct-hire opportunity in the Perimeter area of Atlanta.  The ideal candidate is a Sr. Security Analyst who will support the Cybersecurity team and serve as a subject matter expert for the company's security posture.  This position secures enterprise information by determining business & security requirements, planning, implementing, testing security systems, preparing security standards, policies & procedures and mentoring team members.
The Sr. Security Analyst role will work cross functionally with other internal and third-party teams to deploy security tools, detection and monitoring systems. The role will potentially lead the response to critical security incidents and threats, perform threat hunting and Pentesting efforts.  The position requires compliance with company security policies, contractual requirements and applicable laws and governing bodies.
 Role Specifics:
  • Interpret and implement change requests on managed security device platforms, primarily, End Point Security, Firewalls and IDS/IDP devices.
  • Remotely access and manage devices at various national locations.
  • Lead work on projects, assignments, or initiatives assigned by management.
  • Participate in training related to technologies and platforms supported by the company or 3rd party vendors.
  • Understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53.
  • Be expected to acknowledge their security responsibilities in writing prior to performing duties along with maintaining a working knowledge of local security policies and execute general controls as assigned.

QUALIFICATIONS - a good mix of the following:
  • 5+ years of relevant security experience
  • Hands on experience with one or more of the following firewall platforms or technologies: CheckPoint, Cisco ASA/PIX and/or Juniper/Netscreen.
  • Knowledge in IDS/IDP, HIDS/HIPS and other similar security technologies.
  • Hands on experience with one or more of the following IDS/IPS platforms: TippingPoint, Sourcefire, Imperva, Cisco IPS.
  • Vast knowledge in SEIM technologies and procedures and processed on alerting, triage and incident handling.
  • Experience in Forensic Investigations using proper tooling to survive insurance and legal scrutiny.
  • Linux and Windows security and administration experience from the CLI. Capable of scripting some of the following; BASH, KSH, Perl, Python, SQL, MySQL, Powershell and/or Java. WMIC, DMI and other querying a plus.
  • Fundamental understanding of basic network principles related to TCP/IP and the OSI Model and capable of applying the OSI model to the security stack.
  • Understanding of spanning ports, packet sniffing and analysis via tools like Ethereal or WireShark.
  • Intermediate level of networking expertise and understanding of advanced routing principles, networking fundamentals, and well-known protocols/services including GRE, BGP, and OSPF, ARP/NAT, and command line interfaces
  • Ability to read and interpret network diagrams primarily through Microsoft Visio
  • Have performed Pentesting routines using Kali, Burp Proxy and other technologies.
  • Fluent in cloud-based solutions and the differences in what levels of security needed for the level of service provided (SAAS, IAAS etc).
  • Highly analytical with the ability to process through data accurately even when under stress and situations with many moving parts, workflows and teams.
  • Knowledgeable in Vulnerability Management, Risk Assessments, Compliance and Auditing methods.
PREFERRED qualifications:
  • One or more vendor certifications for enterprise level security platforms such as CCSA, CCSE, CCSP, JNCIA, JNCIE, GCFW, CCNA.
  • Non-vendor specific certifications such as Linux+, Security+, CISSP, Network+ or SANS/GIAC Certifications (GCFW, GCIA, and GCIH)
To find out more, apply to firstPRO today!