Sr. IT Security Analyst

Information Technology Houston, Texas


Description

Description

The IT Security Analyst position requires information gathering, analytics aptitude, problem-solving skills, and team spirit to minimize and/or neutralize risk. IT Security Analysts are on the "front lines" of security operations. Incumbents constantly monitor the environment for signs of trouble and are often the first point of contact when a high-risk alert is issued or a suspected attack begins to affect business operations.


Responsibilities 

The candidate may work on any of the following:

Security Operation Unit and IT Systems collecting security data, searching, monitoring, and analyzing machine-generated big data provide a wide variety of automated feeds into the SOC.

The Analyst analyzes the results of these monitoring solutions, asses and correlates the output using automated systems. This position will conduct the triage, event correlation, classification, and analysis of these events such that incidents are investigated and logged or followed-up using the existing information risk incident management processes.

The Analyst will follow-up with higher-level IT Security Analysts or his/her immediate supervisor to seek further information necessary for proper analysis and quick turnaround on Incidents. He/She will provide guidance on the response action plans for information risk events and incidents based on incident type and severity.

The analyst will provide pro-active feedback which will enable improvement of the current monitoring rules, based on information and knowledge/experience from Schlumberger and Industry best practices.

This position is capable of working unsupervised, but able to interact and give direction to business and IT teams in line within established corporate security policies and processes.

This position may be working in flexible hours, should expect to work early/late or WE shift and public holiday.

Develops and maintains constructive and cooperative working relationships with team members

Demonstrates the ability to drive for creative, innovative ways to solve problems or minimize risks

Consultative skills and ability to work cross-functionally.

Focused and results-oriented

 

Qualifications & Experience

Bachelor's or Master's degree in a technical field such as Computer science, Management Information Technology (MIS), Engineering, and Mathematics is strongly preferred

10 years of professional experience in Information Technology

Five (5) year’s work experience in information security and/or SOC with ideally capability to think out of the box Windows 10 AD, Carbon Black, Palo Alto, SPLUNK or SIEM

Five (5) year’s work experience in computing environment or Data Networking fields. Experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC), or a Security Operations Center (SOC).

Experience with Anti-Virus, Intrusion Detection Systems, Firewalls, Active Directory, Vulnerability Assessment tools, and other security tools found in large network environments; along with experience working with Security Information and Event Management (SEIM) solutions.

Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host-based intrusion detection systems, and other security software packages. Digital Media Analysis (DMA) and prior computer forensics experience strongly desired, but not required.

Experience with SPLUNK to maintain and create, as needed, scripts to perform special functions or automated reports within SPLUNK

Experience with a variety of operating system experience, Windows/Linux/Unix/iOS/Android/WP in a functional capacity

Security and/or Networking experience and understanding in the Working knowledge of general security methodologies, concepts following:

Basic routing principles and networking fundamentals

Well known protocols and services (FTP,HTTP,SSH,SMB,LDAP)

Packet Analysis Tools (TCPDUMP, Wireshark, Ngrep)

Knowledge/Experience with Orchestrator "ePO", SourceFire IPS, Juniper/Palo Alto Firewalls, and

Must have familiarity with TCP/IP services or networks and have a passion and interest for technology as well as a desire to learn more about security-related platforms and malcode analysis

Must possess good work habits, a strong work ethic, and be able to adhere to company work hours, policies, and standard business etiquette

Must exemplify strong analytical skills, have strong problem-solving skills using structured and methodic investigation method while applying logical thinking

Consensus building and strong collaboration skills are crucial; Excellent communication, verbal and written skills

A minimum of 1-3 years of experience with Nexpose is required

Certified Nexpose Admin certification is a plus

 

 

HOW YOU'LL GROW AT EPMA

We believe in the investment of our people. Strong client results and company growth is a direct result of our focus on personal growth for every single employee. With regular reviews and measurable development plans, we help you focus on the skills and knowledge you need to succeed. From on-the-job learning to professional development programs, we help you to grow throughout your career and ready you for the opportunities that lie ahead.

 

EPMA'S CULTURE

BE INSPIRED our 10 core values are at the forefront of everything we do. We take pride in investing in the development of our people, because they are part of the EPMA family and DNA. Call us old fashioned, but we believe in building talent, and we take pride in preparing our future leaders and innovators. You will find a fun, exciting and rewarding career at EPMA.

 

ABOUT EPMA

Since 2010, EPMA has quickly earned credibility as a trusted leader in Project and Portfolio Management Services helping local businesses to Global 50 companies deliver projects with greater efficiency and success. Our ability to attract the most talented people and empower them to make a difference for our clients is part of what makes EPMA one of the Top Companies to work for in Texas, and one of the Best and Brightest companies to work for in the nation. We are also on the Inc. 5000 list as one of the fastest growing, privately held companies in America today.

EPMA is an Equal Opportunity Employer and Prohibits Discrimination and Harassments of Any Kind: EPMA is made up of a very diverse group of individuals representing a variety of backgrounds, perspectives, and skills. At EPMA, we don't just accept difference - we celebrate it, we support it, and we thrive on it for the benefit of our employees, our services and our community. EPMA is proud to be an equal opportunity workplace.

 

***** EMPLOYMENT RECRUITING FRAUD ALERT *****

EPMA is aware of several instances of employment recruiting fraud, and we have reached out to the proper authorities to try to put a stop to these scams.

Please know that any correspondence from EPMA will come ONLY from an @epmainc.com or @jobvite.com email addresses, we do not conduct interviews in chat rooms, we do not use personal, gmail, Hotmail or such email addresses, text messages, we would never solicit money from a potential candidate, and we would not request sensitive personal information like bank account and social security numbers via email or during an interview.

If you feel you’ve been a victim of employment recruiting fraud and are at risk of identity theft,  click here for additional steps to report the issue and/ or protect yourself. You can also file a complain with the  Internet Crime Complaint Center.

Please read a press release on  Job applicant PII fraud  from the FBI.