Current job openings

Information Security Analyst

Posted: Tuesday, November 20, 2018 Full-Time

Details

The Information Security Analyst provides the direction and technical expertise needed to design, implement and maintain the firm’s information technology security environment.  This position is responsible for developing and implementing appropriate IT security policies and procedures, configuring and managing security software, and participating in daily security operations. The individual conducts vendor, project and technical/ad-hoc security reviews.

The position is in Houston, TX and reports to the Regional Information Security Manager, Americas.

Additional responsibilities include but are not limited to:

  • Review maintenance and IT infrastructure processes to ensure efficient and adequate security provisions
  • Review current technology infrastructure to identify key risk areas, and ensure adequate levels of controls are in place to address those risks
  • Perform security reviews for vendors, projects, and technical/ad hoc process implementations
  • Perform vulnerability scanning on IS to ensure appropriate protection has been put in place for those systems
  • Provide directions and strategies for virus detection and removal
  • Implement suitable vulnerability and threat management in order to safeguard the information assets
  • Develop techniques, procedures and utilities for improving the conduct security risk assessments
  • Perform security analysis and make recommendations during the system development life cycle
  • Coordinate and implement solutions for effective security of data on desktop and laptop systems
  • Coordinate the development, implementation, and administration of high-level security policies, practices, standards and programs
  • Coordinate the development and execution of effective security awareness programs
  • Provide pertinent security information and input to strategic and tactical planning, initiatives, and projects planning
  • Establish and maintain security processes and procedures in compliance with industry regulations and client requirements
  • Broaden and enhance knowledge of international standards and government regulations, including ISO/IEC 27001, NIST, FISMA, and HIPAA
  • Additional responsibilities as assigned

Qualifications & Skills:

  • Bachelor degree in Computer Science, Computer Engineering or related field
  • Minimum five years of experience in an information technology security role
  • Knowledge of SIEM and IDS/IPS solutions
  • Experience in configuration, securing and maintenance of remote access, Internet proxy, strong authentication, encryption and anti-malware technologies
  • Experience with security administration across multiple operating systems and especially Windows, Exchange, Cisco and SQL environments, as well as experience with conceptual security design considerations in Internet firewalls, LAN, WAN, file server, PC, UNIX, TCP/IP and VPN environments
  • Solving and analytical skills to a determining a solution for any issues
  • Strong technical skills in security technologies and software such as intrusion detection systems, next-gen firewalls, vulnerability scanning, forensic tools for malware analysis, event log management and alerting systems
  • Ability to write and maintain technical procedures related to information security processes
  • CISSP, CISM, CEH and/or CISA certification is preferred
  • Law firm or professional services experience a plus

Equal Employment Opportunity/M/F/disability/protected veteran status