Southwest Gas Corporation Senior Security Analyst in Las Vegas, Nevada
The Senior Security Analyst will focus on monitoring, detecting, analyzing,
and triaging cyber incidents. This includes adjustments to cyber solutions to improve detection and containment capabilities, as well as conducting forensic investigations in support of Legal Affairs.
This position may provide task direction for others on assigned projects of any complexity and scope.
Analyze security controls and systems policy configurations
Evaluate and coordinate security best practices in the management of threat and vulnerability management, identity and access management, data loss prevention and compliance
Identify security requirements, using methods that may include risk and business impact assessments when working with business units and other risk functions
Investigate and report to management concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance. May coordinate and/or perform control, penetration and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, with recommendation of remedial action
Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle
Works with the Information Services department and members of the information security team to identify, select and implement technical controls
Develops and documents security processes and procedures, and supports service-level agreements (SLAs) to ensure that security controls are managed and maintained
Assists with the execution of risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk and risk mitigation strategies
Assists with the definition of security configuration and operations standards for security systems and applications networking and telecommunications equipment based security systems
Assists in the development and validation of baseline security configurations for operating systems
Provides second- and third-level support and analysis during and after a security incident
Develops standards and department procedures
Provides input/oversight in the department’s activities/responsibilities including planning, scheduling, staffing, monitoring, traveling and reporting
Participates in security investigations and compliance reviews, as requested by internal, external auditors or compliance/regulatory agencies
Monitors daily or weekly reports and security logs for unusual events and acts as a liaison between incident response leads and subject matter experts
Works with the information security governance process to define control recommendations that are both efficient and effective
Maintains an awareness of existing and proposed security-standard-setting groups, state and federal legislation and regulations pertaining to information security
Identifies regulatory changes that will affect information security policy, standards and procedures, and recommends appropriate changes
Assists in the development of security architecture and security policies, principles and standards
Participates and provides guidance for security activities in the system development life cycle (SDLC) and application development efforts
Participates in organizational projects, as required
Perform related duties and responsibilities as assigned
Regular and predictable attendance is a condition of employment and is an essential function of the job
The ideal candidate would be in a leadership position within a Security Operations Center (SOC) with five years of collective relevant work experience in the following areas:
Administration and use of a SIEM solution to include experience in correlating alerts.
Development and deployment of IPS and IDS rules.
Development and management of Data Loss Prevention (DLP) policies
Network Forensics (Threat Hunting)
Malware Analysis and Remediation
First Response and Security Incident Handling
E-Discovery and Digital Forensics.
Threat Intelligence gathering and implementation into a Security Solution.
Bachelor of Science degree in Information Systems, Management Information Systems, Computer Science, Information Security, or maintains at least one of following active certifications (CISSP, GCHI, GCIA, CEH).
Preferred experience includes Management of a Security Operations Maturity Roadmap, Develop Executive Security Reports and Presentations, Mentoring Analysts, and Develop Key Performance Indicators.
$90,840 - $113,550
External Posting End Date: 9/29/2020
External Company Name: Southwest Gas Corporation
External Company URL: www.swgas.com
Post End Date: 9/30/2020
Position Information (Text Only): The Senior Security Analyst will focus on monitoring, detecting, analyzing, and triaging cyber incidents. This includes adjustments to cyber solutions to improve detection and containment capabilities, as well as conducting forensic investigations in support of Legal Affairs. This position may provide task direction for others on assigned projects of any complexity and scope.