Department

Infrastructure Security Analyst

Information Technology
Posted: 10/16/2021
Full Time
Los Angeles, CA
Position is responsible for operational maintenance of the Cybersecurity vulnerability management program, analysis and implementation of security tools and measures, and the hardening of server, client, and network equipment.  
Essential Functions:
  • Manage vulnerability management platform and work with the infrastructure and service desk teams to implement remediations on an ongoing basis
  • Manage log aggregation and monitoring platform (SIEM) and respond to incident alerts
  • Respond to user reported Phishing attempts using service ticketing platform
  • Manage and enforce user security awareness program – design and publish quarterly test phishing campaigns
  • Research new threats and attack vectors and implement countermeasures and controls to adjust the security posture
  • Create and enforce Windows and Linux server hardening standards
  • Conduct configuration and system audits for adherence to best practices and compliance to security standards
  • Coordinate penetration testing to find exploitable weaknesses
  • Lead incident response, including steps to minimize the impact and then facilitate a technical and forensic investigation of the breach
  • Respond to outside audit questionnaires
  • Monitor networks and systems for security breaches, using intrusion detection software
  • Produce periodic security reporting to management, including vulnerability status, configuration gaps, etc.
  • Manage endpoint protection software and advise on selection of alternative vendors
  • Manage Internal Certificate Authority and external certificates
  • Non-Essential Functions
  • Ability to produce executive reporting to illustrate security posture and areas for improvement
  • Ability to communicate and present ideas and recommendations effectively to IT management
  • Ability to translate technical information into a manner that end users can understand
  • Education/Experience Requirements:
  • Bachelor’s Degree in a technical field preferred
  • Minimum 6 years of security analyst/administration experience
  • Understanding of OWASP Top 10 security threats
  • Understanding of SOC 2 Type 2 compliance
  • Understanding of NIST compliance
  • Experience with cloud infrastructure security needs in O365 and AWS
  • Experience with network and web application monitoring tools is preferred
  • Knowledge, Skills & Abilities:
  • Expert knowledge of information security principles and practices
  • Experience with Vulnerability Management Platforms (Rapid7, Qualys, Tenable, etc.)
  • Experience with Patch Management platforms (SCCM, Ivanti, etc.)
  • Experience with email security platforms (Proofpoint, Mimecast, etc.)
  • Experience with incident management
  • Expert knowledge of security architectures
  • Expert knowledge of Microsoft Server systems, technologies and servers
  • Experience with VMware
  • Expert knowledge of Active Directory
  • Expert knowledge of network fundamentals (IP, gateway, DNS, routing)
  • Understanding of cloud environments: Azure, AWS, SalesForce.com, Office365
  • CIM does not accept unsolicited resumes from Agencies.  Any unsolicited resumes received from Agencies will be considered property of CIM and no fees will be due or paid.  If you wish to become an approved Agency with CIM or any of its Affiliates, please contact a member of the CIM Talent Acquisition Team.