Über
As a Lead IT Security Analyst, your primary responsibility will be to implement robust security measures to protect our organization's data, networks, and computer systems, while focusing on effective threat detection, investigation, and response. ARE YOU A GOOD FIT?
We are looking for proactive individuals who thrive in collaborative environments, are committed to delivering excellence, prioritize customer needs, and possess a genuine sense of empathy. KEY RESPONSIBILITIES MAY INCLUDE: Design, implement, and monitor security measures to safeguard computer systems, networks, and information. Define and identify system security requirements. Architect and develop detailed cybersecurity frameworks. Document standard operating procedures and protocols. Configure and troubleshoot security infrastructure devices. Create technical solutions and tools to mitigate vulnerabilities and automate processes. Lead IT teams and business units in resolving compatibility issues between security tools and applications. Analyze suspected malicious code and provide assessment reports to management. Evaluate client and customer needs and deliver clear reports to leadership. Manage configuration of scan engines and asset groups. Interpret vulnerability findings and prioritize remediation efforts using Real Risk Scores and Threat Intelligence. Create and manage custom dashboards, reports, and alerts within InsightVM. Track progress on remediation projects across teams. Utilize real-time visibility through Live Dashboards and Query Builder. Integrate InsightVM with ticketing systems for automated remediation workflows. Understand Nexpose scan engine architecture and deployment. Utilize InsightVM APIs for automation and custom integrations. Coordinate internal and external penetration testing engagements. Scope penetration tests based on business requirements and threat landscapes. Liaise between third-party testers and internal stakeholders for seamless execution. Manage testing schedules and resource allocation to minimize operational impact. Understand penetration testing methodologies including OWASP, NIST SP 800-115, and PTES. Review and validate test findings and risk assessments. Leverage vulnerability management tools to correlate findings. Possess knowledge of diverse security testing scopes such as network, application, cloud, and physical security. Communicate findings from penetration test reports clearly, ensuring clarity and actionable insights. Track remediation progress, including retesting and validation of closure. Maintain audit trails and documentation for compliance and governance. Understand regulatory requirements pertaining to penetration testing including PCI-DSS, HIPAA, SOX, and GDPR. Align testing initiatives with risk management frameworks and security policies. Experience with Rapid7 InsightVM for vulnerability scanning and management is essential. QUALIFICATIONS: A Bachelor's degree in Information Systems, Computer Science, or a related technology field from an accredited institution is preferred. Technical institute certifications are also valued. Eight (8) years of experience in encryption technologies, digital forensics, network topologies, and access controls or an equivalent combination of education and experience is required. Skills & Knowledge: Proficiency in TCP/IP services. Familiarity with audit and compliance standards. Expertise in vulnerability management. Experience with penetration testing methodologies. Proficient across various operating systems. Strong knowledge of desktop productivity tools. Familiarity with Carbon Black Protection. Experience with Symantec Endpoint Protection and host data loss prevention. Knowledge of IT security frameworks. Excellent verbal and written communication skills, including strong presentation capabilities. TAKING CARE OF YOU: Opportunities for career development and advancement. Comprehensive benefits package including medical, dental, vision, 401k, PTO, and more. Physical work requirements include computer keyboarding. Auditory and visual capabilities, including hearing, vision, and speaking, are essential. Mental capabilities such as clear and conceptual thinking, sound judgment, and the ability to meet deadlines are crucial. The duties described in this document outline the general nature and level of work required and may not encompass all functions or local variances. Management reserves the right to modify the position's duties at any time. If you're excited about this opportunity but feel your experience doesn't align perfectly with every requirement, we still encourage you to apply! Sedgwick is committed to fostering a diverse, equitable, and inclusive workplace and recognizes that each individual brings a unique set of skills and experiences. Sedgwick is an Equal Opportunity Employer and maintains a Drug-Free Workplace. Sedgwick, as the leading risk and claims administration partner, assists clients in navigating unexpected challenges. Our expertise, combined with advanced AI technology, sets the standard in claims administration, loss adjusting, benefits management, and product recall services. With over 33,000 colleagues and 10,000 clients across 80 countries, Sedgwick delivers unmatched perspective, care that counts, and solutions for the evolving risk landscape.
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klicken Sie auf „Jetzt Bewerben“, um Ihre Bewerbung direkt auf deren Website einzureichen.