When you think IT and Security does it give you goosebumps? How about a place you could get in and stay for a long time if you wanted? What if you could combine two of the best parts of IT, Security and the Cloud? If you said yes to all 3 questions then we might have a great position for YOU! Shook, Hardy, & Bacon LLP is looking for a Sr. InfoSec Analyst to keep our team operating at peak performance. Some of the experience you need to bring to the table is Azure Cloud Security Architecture and Implementation, Certificate Authority and Key Management, and a CCSP cert wouldn't hurt either. Bring all of these and you will be at the front of our consideration line. Please review the description below in its entirety before deciding to apply.
Communicates courteously and professionally by phone and in person, using good communication skills.
Keeps supervisor abreast of current issues and potential problems as they develop; seeks advice as needed.
Responsible for conducting, coordinating, testing, implementing, deploying, and operational
maintenance of all information security systems, applications, appliances and devices throughout the firm.
Responsible for assessing, recommending, developing, implementing and maintaining the firm's computer security infrastructure and security standards.
Provides technical expertise in the selection, testing, implementation and deployment of information security systems.
Provides technical guidance and direction in information security monitoring, assessment, auditing and testing.
Assists in defining, developing and implementing the firm's Information Protection Program security policy.
Performs security event and intrusion analysis on a daily basis and mitigates any incidents that are medium to critical in nature.
Performs penetration testing, including wired and wireless, social-engineering, and application security vulnerability assessments.
Provides guidance and input to technical reviews of proposed security projects and the certification and accreditation process.
Independently and, as a team member, plans, executes and documents security tests and evaluation.
Performs analysis of in-place technical and non-technical security controls protecting information and information systems. Uses advanced technical skills in network security design and implementation.
Has advanced understanding of the OSI model and how to apply the OSI model to daily troubleshooting and network security projects.
Manages information security aspects of IT projects, ensuring security protocols are in place and compliance with other applicable information security policies. Analyzes project plans to determine security requirements and follows up to ensure security of new systems.
Provides guidance to non-senior security staff on information security and any security related projects.
Lead for security risk assessments and penetration studies of networks. Recommends solutions for security vulnerabilities and takes corrective measures and/or applies security patches when appropriate.
Installs, monitors, maintains and upgrades virus detection applications/tools to ensure computer codes, viruses, and worms are blocked or eradicated when detected.
Analyzes problematic security log entries from security servers and routers, provides technical solutions to issues and security breeches.
Is on call to respond to security incidents or disaster recovery and business continuity operations.
Maintains advanced knowledge of the firm's Information System Security posture, goals and objectives.
Bachelor's degree (B. A.) from four-year college or university; or four years information security and two years advanced information security experience and/or training; or eight years of combined information systems and information security experience and/or equivalent combination of education and experience.
Azure Cloud Security Architecture and Implementation * Windows 2008+ Server Operating System Support * Certificate Authority and Key Management * General Understanding of Linux/Unix * IPS/WAF (Fireye, Checkpoint, McAfee, Imperva)