• Find preferred job with Jobstinger
  • ID
    #17807204
  • Job type
    Permanent
  • Salary
    $75,000 - $90,000
  • Source
    SecurIT360
  • Date
    2021-07-22
  • Deadline
    2021-09-20

Security Analyst

Missouri, Saintlouis, 63101 Saintlouis USA
 
Permanent

Vacancy expired!

Position: IT Security & Compliance AnalystDuration: Direct HireLocation: St. Louis, MOSalary: 75-90k Law firm currently has an exempt position available in our St. Louis office for a full time IT Security & Compliance Analyst with 5 years of experience IT security resource in an enterprise environment. Qualified applicants will have a Bachelor degree with a major in computer information systems or equivalent degree/experience and hold the following certifications, or the equivalent security credentials; CompTIA Network+, CompTIA Security +, CompTIA Cybersecurity Analyst (CySA+).

Direct experience with security tools and solutions, such as PKI, AV, IPS/IDS, vulnerability and penetration testing, OS Hardening, VPN, Content Filtering, Proxies etc., as well as working knowledge of ISO 27001 Lead Auditor/Implementer, GIAC, GPEN, CISA, CRISC are preferred. Additionally, Fortinet and experience working within the ITIL/ITSM framework are also preferred. MS Technology Associate Infrastructure certification and/or MS Certified Solutions Associate is a plus.

The person selected for this position must be able to work in a fast-paced environment. Due to the public health emergency, this position is eligible for a short-term remote working arrangement. Job Responsibilities
  • Supports the Firm’s outsourced MSSP Program to develop, enhance, augment and/or improve the Firm’s security program. In summary, these are the outsourced elements of the Firm’s security program.
  • Partners with the Firm’s General Counsel, Technology, Loss Prevention and/or Risk Committees for policy, procedural, and technology changes that can be operational or strategic in nature.
  • Partners with clients when required to respond to or resolve security/compliance requirements related to Outside Counsel Guidelines and/or security surveys/audits.
  • Configures alert and response mechanisms across Firm personnel and systems alongside MSSP services to mitigate risks and threat vectors.
  • Analyzes data aggregated from various endpoints, services, and security systems to identify suspicious activity.
  • Designs reports for IT administrators and business managers to run and assess the efficacy of security policies.
  • Improves security programs based on incident remediation, changes in the security industry, and feedback through security reporting.
  • Implements and updates security protocols for monitoring and maintaining assets, including patches and software updates for all on-prem hardware and software as well as cloud-based systems.
  • Designs and administers regularly scheduled knowledge checks and phishing campaigns in collaboration with the Training Department.
  • Participates in security and risk analysis for changes related to new products and services and leads Change Management.
  • Ensures all security processes and configurations are documented and up to date, including incident response protocols and disaster recovery plans.
  • Facilitates the processes for reviewing, approving, and closing any exceptions to security policy, whether client-driven or circumstantial.
  • Assists with operational compliance to security standards such as ISO, NIST, and others.
  • Supports security/compliance issues and tracks status, complication, and completion of work assigned to the IT Operations team
  • Presents data-driven analysis in support of operational and strategic objectives through synthesizing information across research, vendor engagements, industry resources, IT peer interviews, and Firm personnel interviews.

Job Requirements
  • Ability to work autonomously; capable of prioritizing work, resolving issues, and where necessary, escalating issues with recommendations for resolution.
  • Strong critical thinking skills with an ability to break down complex problems into smaller components and analyze data to provide evidence-based conclusions.
  • Knowledge of, and experience with, common security frameworks, such as CCPA, NIST, HIPAA, SOX, etc.; ability to liaison with the Firm’s business and clients, of the impact of these frameworks on the Firm.
  • Ability to leverage automation and workflows to manage routine tasks
  • Ability to collaborate using modern technologies methods (e.g,. Microsoft Teams) as requested by management.
  • Ability to identify and contribute relevant information to teams and projects.
  • Ability to apply the industry’s best practices within a legal ecosystem.
  • Thrives on change, showing an ability to drive the IT security strategy forward and keep pace with the latest security technologies.
  • Forms business partnerships, in person, and remotely when working from home, that help drive the IT security strategy forward, taking a customer service approach with internal and external customers.
  • Maintains a thorough understanding of the use of the Firm’s information technology and policies and their application in a legal environment.
  • Must possess a high level of professionalism and interpersonal skills so as to be able to work well with employees at all levels within the organization and maintain all information in the strictest of confidence. Required to use tact and diplomacy when dealing with others.
  • Must have the ability to read, write and communicate fluent English; ability to compose documents in the appropriate business style using correct grammar and spelling; ability to communicate clearly using proper grammar and diction over the telephone.
  • Must possess attention to detail, the ability to balance multiple projects, and have strong time management skills.
  • Must have the ability to reason and apply common-sense understanding to situations encountered.
  • Ability to process routine daily functions while being able to resolve sensitive issues and complex assignments utilizing above-average critical thinking skills.
  • This is a full-time position which requires working in the office a minimum of 40 hours on a regular basis. Often times it may include working outside of normal business hours to ensure completion of position requirements.
  • Ability to travel if necessary.
  • The physical demands of this position are representative of those that must be met by an employee in order for him or her to successfully perform the essential functions of the position. These include being both mobile and stationary throughout the workday, having the ability to transport 25 pounds, and being able to operate a computer and other business equipment found in the office.

Vacancy expired!

Report job