Online Security Specialist

Social network you want to login/join with:

Responsibilities:

1. Participate in developing an IT strategic plan, evaluate/review existing infrastructure security configuration, and plan recommendations for future enhancements/solutions for environments of 300+ users.
2. Conduct accurate network inventory and security assessments through vulnerability testing and risk analysis.
3. Perform both internal and external security audits.
4. Analyze security breaches to identify the root cause.
5. Read, understand, and recommend solutions based on the results of internal and external audits.
6. Verify the security of third-party vendors and collaborate with them to meet security requirements.
7. Use network monitoring tools and security incident event monitoring to examine network traffic and identify threats, ensuring security specifications meet client infrastructure guidelines.
8. Work closely with the IT team in designing and implementing a multi-layer security strategy.
9. Participate in the execution of disaster recovery testing.
10. Provide security expertise to business applications, ensuring secure deployment and implementation.
11. Research and design short- and long-term infrastructure improvements, ensuring network and systems operate efficiently.
12. Review access/security logs, report findings, and provide recommendations to the Director of IT.
13. Assist in developing and maintaining access control matrices for various applications.

Requested Qualifications:

• Minimum of 3-5 years of IT security experience.
• A Degree in Computer Science or related fields such as Cyber Security, Information Technology, Information Assurance, etc.
• Familiarity with hardware and software platforms, understanding core technologies like TCP/IP, DNS, DHCP, etc., and security risks and mitigation strategies.
• Experience implementing NIST Cyber Security Framework (NIST 800-53) and CSC20 controls; knowledge of compliance programs like HITRUST, SOC 2, HIPAA/HITECH, NIST/CMS, or similar.
• Experience working with networks of 300+ users.
• Proficiency with OS Security on Windows and Linux.
• Relevant experience in security, vulnerability analysis, penetration testing, forensics, and systems engineering.
• Ability to create detailed reports of risk findings and improvement roadmaps.
• Ability to work independently and in teams.
• Familiarity with project management is a plus.
• Experience with ethical hacking, intrusion prevention, incident response, forensics, and reverse engineering.