*Send resumes to philip.rajarat...@3i-infotech.com <philip.rajarat...@3i-infotech.com>*
*Position: IT BA security* *Location: NY* *Duration: 6 Months* *Need H1B Copy* *Job Overview:* We are looking for a Business Analyst who is experienced in designing and documenting processes and procedures in support of IT Security/ Information Security programs. The ideal candidate will have experience in designing processes / procedures that rely on SIEM type technologies in order to detect patterns of activity that require further analysis or escalation. This position will NOT require installation / configuration of SIEM / DLP / Threat Feed & amalgamation technologies but will instead focus on the broader design issues: Developing escalation scenarios for certain “triggers” or “event correlations” (ex: an employee suddenly is sending massive amounts of data to an external host) that indicate possible Insider Threats (ex: disclosure of data). Additional color: The candidate will be supporting the Security Incident Response function on building out escalation processes around the Insider Threat Program, e.g. Identifying staff doing bad things such as abuse of privileged access, as well as general support of the day to day operational review function. Ideally we would like a candidate who has specifically designed scenarios / processes / triage procedures / pattern analysis triggers. The major difference is that instead of developing scenarios for external Threats, the focus will be on developing scenarios to detect internal activity which indicates an Insider Threat. *Duties & Responsibilities: * Planning duties will include: We are looking for a Business Analyst who is experienced in designing and documenting processes and procedures in support of IT Security/ Information Security programs Responding to Security Events Operational Role Scanning fishing messages Visio MPP skills Incident and Ticket Management experience Baseline the methodology and technology Security Architecture definition and review Educate the project participants in their roles and responsibilities for security Collaborate with other team members to facilitate the best recommendation The successful candidate will be required to demonstrate they have the ability and experience to contemplate Insider Threat scenarios and develop such scenarios into escalation procedures and processes to address the risk. Excellent communication / writing skills and documenting developed processes, procedures, and scenarios in Microsoft Visio is required. Prior experience working in this domain within a highly regulated industry sector highly preferred (ex: Finance, Banking, Insurance, Healthcare, Defense / Intelligence). *Skill, Experience & General information Required: * Educational Requirements: Preferred: BS in IT or related field Experience: Required: 1 – 5 years with Insider Threats and/or traditional SIEM driven Threat Mgt Programs Technical Experience: Required: Experience with SIEM / DLP technologies Technical Certifications: Preferred: CISSP, CISA, or other relevant Security or SIEM / DLP related certification Desirable Skills 10+ Years of technology design and implantation experience in an IT organization preferably in the financial industry. Prior Solution Architecture Experience Excellent written and verbal communication skills. Worked in onshore/offshore model Demonstration of current skills with design tools: UML, Power Designer, or the like. Experience in Identity and Access Management (Minimum 2 years of experience) Experience with Object Oriented Programming like Java or .Net. Experience with software design patterns, unit testing, performance / memory analysis, and n-tier service-oriented architecture QSA(Qualified Security Assessor) certification/experience CISSP Certification. Regards Philip -- You received this message because you are subscribed to the Google Groups "oraapps" group. To unsubscribe from this group and stop receiving emails from it, send an email to oraapps+unsubscr...@googlegroups.com. To post to this group, send email to oraapps@googlegroups.com. Visit this group at http://groups.google.com/group/oraapps. For more options, visit https://groups.google.com/d/optout.