Information Security Analyst 2 - Contractor 6/7/2018
Hood River, OR
JOB DESCRIPTIONAPPLY Company Description
Insitu, a non-fully integrated subsidiary of The Boeing Company, is an integrated information and technology company, pioneering in the design, development, production, and operation of high-performance, cost-effective unmanned aircraft systems. We exist to pioneer and innovate products and services that positively impact people s lives and change the course of history. To reach our full potential as a business, we imagine and create much more than products with wings. On a daily basis, our Vision and Mission guide us, while our cultural pillars Pioneer | Perform | Unite | Care inform our decisions in all that we do, and aspire to do. Job Description
nsitu is looking to hire an Information Security Analyst to join the Security Operations team. The Security Analyst is a key member of an enterprise-level team of cyber security specialists. This person will ensure that our applications, services and infrastructure are designed, implemented and secured to the highest standards thus maintaining and enhancing customer trust. This person will incorporate security into our infrastructure design and application design processes. Daily activities include: development and implementation of new use cases, working with threat intelligence feeds, tuning of alerts, reporting and handling issues. The Security Analyst will perform technical functions related to Information Security and ensure compliance with the Information Security policy and best practices across all business units. Qualifications
Monitors computer network/information security measures and controls. Implements applications and provides ongoing infrastructure maintenance. Conducts user compliance monitoring and documents findings. Performs or assists with system and equipment risk assessments and tests. Identifies and documents functionality, security measures and vulnerability issues. Implements system security patches. Reviews system logs and identifies anomalies.
Conducts limited penetration testing and recommends systems risk level. Implements security controls, performs active threat monitoring and documents or elevates security events. Performs initial response to security breaches. Determines extent of breach and recommends or implements remediation steps. Gathers data and assists with system forensic analysis or malware and prepares security reports. Conducts or assists with required security awareness training.
PRIMARY DUTIES & RESPONSIBILITIES
Assists in the ongoing engineering and operation of the Security Operations Center's Security Information and Event Management (SIEM) tool, as well as other security technologies. Must be able to identity and respond to malicious events in real-time. The candidate will work with other technical functions to reduce the false positive and suppress duplicate alerts associated with deployed security technologies. The Security Analyst will respond to security incidents and generate targeted alerts for suspected areas. Assists in the creation of an end-to-end technology strategies to address current and future security concerns, emerging threats, regulatory compliance and alignment with technology and the business. The Security Analyst must bring to the table, knowledge of security threats (external, internal, etc..), vulnerabilities and controls, and possess the ability to assess applicability of those variables to Insitu's business initiatives and business strategies. The Security Analyst must manage minor projects / tasks and provide regular reports of progress to the Information Security Manager.
KNOWLEDGE,SKILLS, & ABILITIES REQUIRED
- Prefer candidates with prior experience working in a security operation centers.
-Must have analytical skills for reviewing and responding to Security events in a business environment.
- Must have experience with various networking and security tools such as firewalls and intrusion detection systems.
- Knowledge of cyber security incident response protocols (e.g., identification, impact assessment, containment, remediation, evidence handling, technical reporting, etc.) and safeguarding information.
- Ability to identify susceptibility, survivability, and vulnerability (S/V) of the systems, subsystems and delivery mechanisms, based on the knowledge of characteristics and capabilities of threats (e.g. protocol exploits, identity spoofing, malware injection techniques, application layer vulnerabilities).
- Ability to instruct others on discipline specific operations, tasks or systems.
- Ability to perform technical evaluation and analysis of computing systems and infrastructure to identify underlying security vulnerabilities; communicate vulnerabilities, threats, resulting risk and recommended remediation to system owners.
- Must have excellent communication skills and ability to work with technical and non-technical employees.
Technical bachelor s degree and 2 or more years related work experience or a Master s degree. A technical degree is defined as any four year degree, or greater, in mathematics, sciences or technologies.
Strongly prefer candidates that have current certification related to Information Security. Additional Information
Equal Employment Opportunity: Insitu s policy on equal employment opportunity prohibits discrimination based on race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, or veteran status. This policy applies to recruiting, hiring, transfers, promotions, terminations, compensation and benefits and also states that retaliation against any employee who files a complaint regarding possible violations of this policy will not be tolerated.All your information will be kept confidential according to EEO guidelines..
Additional Benefits9/80 work week (we close every other Friday)
Vancouver-->Bingen-->Hood River wifi enabled commuter bus
Dog friendly workplace -->