Information Security Analyst Senior Cover Letter

I would like to submit my application for the information security analyst senior opening. Please accept this letter and the attached resume.

Previously, I was responsible for routine penetration testing on CenturyLink systems as required for compliance of Payment Card Industry Data Security Standard (PCI DSS), Federal Information Security Management Act (FISMA), Health Insurance Portability and Accountability Act (HIPAA), and other industry compliance standards as necessary.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Able to translate technical security issues into appropriate audience language
• Industry certification in Information security such as CEH, CISSP, GIAC, or equivalent will be advantageous
• Strong knowledge of IT security frameworks (ISO, NIST ec) and related processes
• Experience in PCI compliance programs with a strong knowledge of PCI data security standard (PCI DSS) and requirements
• Independent with proven analytical and project management skills
• Significant breadth of technical experience and critical analysis skills sufficient to perform detailed risk analysis on a variety of technologies and use cases
• Windows workstation and Windows and Linux server administration experience preferred
• Prior experience performing security reviews and technical cyber risk assessments preferred

Please consider me for the information security analyst senior opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for leadership, direction, and guidance in assessing and managing information security risks and maintain compliance with regulatory, contractual, company and mandated security standards and policies.

Please consider my qualifications and experience:

• Experience with SIEM and/or log management tools such as ArcSight and Splunk
• Proficiency in a scripting or query language
• Experience in the management and configuration of FIM products
• Experience in the management and configuration of SIEM products
• Experience in an Information Security operations environment and responding to security incidents
• Experience in the configuration of preventative security controls (e.g., VPN, Firewall, IDS/IPS, and AV)
• High level of initiative, creativity and motivation
• Excellent accuracy and analytical skills

I am excited to be applying for the position of information security analyst senior. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for the necessary support to monitor and ensure compliance with information security policies, procedures and regulatory requirements including assistance with internal auditing, reporting, technical reviews, and identification of security risks.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Escalation to technology vendors for technical support Works closely with technology vendors to understand emerging product enhancements and roadmaps
• Providing consultation to partners and technical groups Overall technical ownership of assigned components
• Good understanding of operational processes is needed
• Experience using intrusion detection methodologies and techniques for detecting host and network-based intrusions via intrusion detection technologies
• Experience with common security assessment and analysis tools (e.g., nmap, Nessus, TippingPoint, HP ArcSight, Fidelis, and FireEye)
• Strong experience preferred with the security technologies such as SIEM, web application firewalls, VPN infrastructure, Intrusion Prevention Systems, DMZ and Extranet infrastructures, 802.11 Wireless networks, Multi-factor authentication, DNS, SMTP, FTP/SFTP, DHCP, 802.1x access control, Anti-malware, Data Leakage/Loss Prevention, switching and routing infrastructure and protocols
• Experience with Microsoft platforms (including Active Directory and Group Policy) and Unix/Linus OS X
• Strong understanding of software/application/database security, system hardening, and secure code analysis (static/run-time) tools

I would like to submit my application for the information security analyst senior opening. Please accept this letter and the attached resume.

In my previous role, I was responsible for leadership and guidance to departments across the Company impacted by regulatory compliance, such as SOX and Payment Card Industry (PCI).

Please consider my qualifications and experience:

• Experience in documenting processes and reviewing or drafting technical architecture and cloud security architecture material better practice
• A holistic understanding of attack vectors, current threats, and remediation strategies
• Experience with object-oriented design concepts
• Experience with common development environments and practices
• Knowledge of Restful web services (client – server application)
• Python scripting, Automation skills, Dev Ops skills
• System admin - Red Hat Linux/Unix, Windows – Basic knowledge is mandatory
• Experience to Automation platform domain

I submit this application to express my sincere interest in the information security analyst senior position.

In the previous role, I was responsible for guidance to internal customers regarding practical application of AOL information security policies and standards and regulatory requirements.

Please consider my qualifications and experience:

• Experience with network, SIEM, endpoint and cloud security tools
• Understand attack surface reviews and multi-layer defense systems to prevent exploits, detect and intercept attacks, and discover threat agents
• Experience programming with Perl, Python, and/or Shell Scripting
• Artful communication skills and organizational savvy to steer peers and leadership toward solutions that carefully balance business, risk, compliance, and engineering concerns
• Industry recognized professional certification such as CISSP, GCIH, GCIA, or equivalent
• Experience with security in the software industry or focus on IP protection
• Experience in working for or with Managed Security Service Providers
• FedRAMP (Federal Risk Authorization Management Program)