Information Security Analyst 4- Commerce IT at Choctaw Nation of Oklahoma
Choctaw Nation of Oklahoma · Durant, United States Of America · Onsite
- Senior
- Office in Durant
Full Time| 100% onsite| Monday-Friday 8:00AM-4:30PM|
Weekly Earned Wage Access is an option for this position.
Job Purpose or Objective(s): The Information Security Analyst's role is to design and implement information security procedures. You will provide technical leadership and consulting across the organization for all aspects of information security and information technology risk identification and mitigation. The Information Security Analyst will be involved in the development and auditing of information security procedures and our Incident Response Plan. You will report to the Director of Information Technology.
Primary Tasks:
- You will conduct detailed security event analysis from network traffic attributes and host-based attributes (memory analysis, binary analysis) to identify information security incidents.
- Guide discussion within the Information Security department to develop and implement strategies for monitoring and preventing attackers.
- Conduct reviews of security event activities to identify trends for potential efficiency and potential gaps with services.
- Develop standard operating procedures to reflect daily security operations.
- Provide security consulting and project management services on complex issues related to data access, integrity, and business continuity.
- You will provide consultative guidance to customers in identifying security risks to their applications, reviewing and documenting their risk tolerance, and implementing appropriate data security procedures and products to mitigate risks.
- Investigate, improve and document the most challenging and important information security breaches and other cyber security incidents.
- Perform advanced penetration testing.
- Help colleagues understand information security management.
- Perform other tasks as assigned.
Requirements:
- Bachelor's degree in computer science, Computer Engineering or Information Systems or 4 years related experience.
- Experience of virtualization, networking, SAN and server hardware, programming, security, and project management
- Skill in information security tool usage and operation
- Skill in enterprise information security design creation
- Basic knowledge of applicable data privacy practices and laws
- Experience with enterprise information security tools (vulnerability management, end-point protection, network monitoring, IDS/IPS)
- Experience with information security event response and mitigation
- 8 years of experience in enterprise information security management, policy development, procedure development, and auditing of information security controls
