Industry Oil and Gas
Job Summary and Scope of Responsibilities
The primary responsibility of a Security Analyst is to ensure the security of the organization’s physical and digital assets. The ideal candidate will be an experienced Security Analyst with
a deep understanding of information security concepts and their implementation in the information technology area.
Major Responsibilities
- Install and maintain security infrastructure, including Firewall, NDR, and SIEM systems.
- Install, maintain, and troubleshoot network infrastructure.
- Assess cloud providers and products, assess and improve cloud security posture.
- Configure, troubleshoot and maintain security infrastructure software and hardware.
- Develop security processes, procedures and performance metrics.
- Assist in the security risk analysis for current and new systems and recommend solutions for reducing exposure areas.
- Implement and maintain cloud security solutions.
- Installing and maintaining physical security systems such as CCTV cameras, access control systems, and alarms
- Evaluate applications and software for security issues.
- Research security enhancements and make recommendations to management.
- Provide periodic reports of security status and vulnerability assessments.
- Develop security standards and practices
- Develop and maintain documentation and diagrams for security tools, system environments, and cloud operations.
- Educate staff members on information security through training and awareness.
- Identify and maximize security value from existing investments.
- Supporting the transition of on-premises security platforms and capabilities to new cloud-based capabilities.
- Provide input to the information security strategy.
- Interacting and partnering with Security Operations Center (SOC) team members as an escalation resource expert for incident response activities.
- Provide tools and techniques to harden on-premises and cloud infrastructure.
Experience and Qualifications
- Bachelors /master’s in computer science
- 6-7 years’ experience in Information Security field with hands-on experience in cloud security, network security and security technologies.
- 2-3 years’ experience in Networking Technologies
- 1+ years’ experience in Leading Cloud Technologies, Cloud Security, DevSecOps, Automation
- Hands-on experience with security products like Checkpoint
- Working knowledge of scripting tools like Powershell, Python
- Diverse skill set with one or more security technologies, such as NDR (Network Detection and Response), NGFW (Next gen Firewall), WAF (Web Application Firewall), NAC (Network Access Control), SD-WAN, etc.
- Critical thinking skills and the ability to solve problems as they arise
- Self-starter, capable of working independently and in a team environment, collaborating well with others to solve problems in a team-focused dynamic.
- Excellent reporting and presentation skills
- Knowledge of implementing security best practices and strong documentation capabilities.
- Knowledge of networking protocols and operations, cloud infrastructure and services, operating system internals and hardening.
Generic Requirements
- Manage parallel activities and competing priorities.
- Keep current with evolving security threats and remediation techniques.
- Assess business needs and expectations, design solutions to meet those needs, and then implement the design.
Certifications
- Certified Information Systems Security Professional (CISSP)
- CCNA
- EC-CEH
- CCSK/CCSP Preferred