*Hi,* *Kindly let me know if you are comfortable on below position.*
*Position: **Information Security Analyst* *Location: Hershey, PA(Need Locals only for face to face interview)* *Duration: 6 month* *I have a Security Analyst position in Hershey, PA* *It is a 6-month project to start… phone screen and face-to-face interview is required. * *Position: Information Security Analyst* *Position Summary:* The Senior Information Security Analyst is responsible for the overall security strategy and posture for the company. The focus will be on the identification, tracking, monitoring, and resolving information security threats and service operations. *Qualifications and Education:* 1. Minimum 7 years experience or Associate’s Degree in Computer Science, Information Systems or related field 2. Minimum 5 years experience working within information security programs in a growing company, preferably in the health care industry. Solid understanding of HIPAA guidelines, policies and practices are a large component of the position. 3. Minimum 5 years experience with MS Windows, Unix/Linux and Networking technologies 4. Minimum 5 years experience with IT project management 5. Minimum 5 years experience with Active Directory/DNS, Wintel/Linux environment 6. Experience in incident response; knowledge in supporting system forensics, event logging systems, authentication methods, remote and local web application security, penetration testing 7. Maintain security for enterprise systems and identify issues that could compromise data integrity or secrecy 8. Strong troubleshooting skills, working with external information security technology vendors, and specialized information security professional services firms when necessary. 9. Strong communication skills, both verbal and written, and ability to explain InfoSec concepts in layman’s terms. *Preferred Skills and Experience:* 1. Demonstrated ability to serve as a “hands-on” technical lead for various aspects of the company’s information security program. 2. Lead and participate in Risk and vulnerability assessments, Log file analysis & correlation, HIPAA policy creation and implementation, HIPAA and PCI DSS vulnerability scanning and audits, physical security compliance, safeguard of intellectual property and computer systems, Security Incident/Breach Response and other applicable risk management initiatives. 3. Demonstrate fundamental understanding of system and network security principles and technology 4. Must have an understanding of Information Security including security threats, vulnerabilities, attacks, responsible groups, motivations and techniques 5. Solid experience with a variety of information security technologies and concepts in an enterprise environment, including implementation, usage, alert and report generation. 6. Ability to report findings clearly and objectively in writing, and relate them to the business implications for company’s existing IT infrastructure and applications. 7. Solid understanding of common security tool functions, such as IDS/IPS, Network and Host-based firewalls, DLP 8. Deep understanding of terminology, such as threat, vulnerability, risk, asset, exposure, safeguards, etc. 9. A self-starter, with excellent time management skills and the ability to prioritize work in a dynamic environment. Ability and maturity to excel in an environment where a certain degree of creativity and latitude is expected. 10. Able to articulate technical processes, both oral and written, to different audiences and varying levels of complexity. 11. Ability to multi-task and escalate any issues, as appropriate *Desired Attributes:* 1. Experience setting up and effectively utilizing tools like SecureVue, Nexpose, Metasploit, Database security tools, SCCM, OS Patching, Multifactor VPN authentication, Email encryption 2. Previous background in infrastructure operations (servers, storage, network) in an enterprise environment is a plus. 3. The ability to handle sensitive, confidential matters and information adequately. Regards *Mayank* 978-558-4666 x 103 *may...@teknavigators.com* <may...@teknavigators.com> -- You received this message because you are subscribed to the Google Groups "SAP or Oracle Financials" group. To unsubscribe from this group and stop receiving emails from it, send an email to sap-or-oracle-financials+unsubscr...@googlegroups.com. To post to this group, send email to sap-or-oracle-financials@googlegroups.com. Visit this group at https://groups.google.com/group/sap-or-oracle-financials. For more options, visit https://groups.google.com/d/optout.