Senior Security Analyst Job Description
Senior Security Analyst Duties & Responsibilities
To write an effective senior security analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included senior security analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Senior Security Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Senior Security Analyst
List any licenses or certifications required by the position: CISSP, ITIL, CEH, GIAC, GSEC, SANS, GCIH, SEC504, GCED, SEC501
Education for Senior Security Analyst
Typically a job would require a certain level of education.
Employers hiring for the senior security analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and University Degree in Computer Science, Technical, Engineering, Information Security, Education, Technology, Information Technology, Information Systems, Management, Business
Skills for Senior Security Analyst
Desired skills for senior security analyst include:
Desired experience for senior security analyst includes:
Senior Security Analyst Examples
Senior Security Analyst Job Description
- Conduct analysis and provide security design requirements for existing or new systems and infrastructure, data, software and facilities
- Lead the resolution of security related incidents and provide support for agency software solutions
- Lead the agency security awareness program
- The associate is involved in multiple technical, development, or account related projects and/or processes that are of a complex and/or critical nature
- Provide expert consultation about his/her area of expertise
- The associate is expected to utilize his/her technical (area of) expertise on multiple, complex, and high-priority projects and/or processes
- Directs product strategy for a specific security products, new or established
- Enhance the contribution of other associates through consultation, mentoring, training
- Requires a minimum of 5 years of related security experience or equivalent industry certifications
- Provides advice and guidance on the response action plans for information risk events and incidents based on Incident type and severity
- Completion of security certifications (CISSP, GCIA, GCIH, GREM, CEH, CIH, CISA, CISM, ) is preferred
- Strong communication, influence and leadership skills
- BS or BA degree in a related field or equivalent work experience
- Minimum 5 years in information security related field
- CISSP/CEH or equivalent Certifications
- Strong organizational skills with the ability to multitask in a fast paced environment and manage multiple deadlines and priorities
Senior Security Analyst Job Description
- Utilise SIEM data and correlated logs containing IDS/IPS, AV, web application firewalls, Operating System events, web proxy, and similar data to establish context and scope
- Provide investigation/project assistance by obtaining and analyzing supporting records including customer, company and public records
- Conduct manual or system assisted analysis on VZW Security incidents and investigative results to identify trends, and make recommendations to prevent and better detect fraudulent activity
- Assist in the maintenance of Corporate Security’s case file systems
- Respond to cyber-security threats, vulnerabilities, events and incidents
- Act as technical contributor during major security incidents
- Perform the deployment, integration and initial configuration of all new security solutions enhancements to existing security solutions in accordance with standards and best practices
- Identify new security protection technologies to enhance business services
- Provides project support for security functions
- ASA / PAN/ McAfee/ Checkpoint/etc
- Develop, foster and maintain positive relationships with internal parties to ensure effective coordination of the BCCM planning and testing process
- University or Post Graduate
- Experience in monitoring and administrating host based intrusion detection systems
- Experience with network security assessment tools (e.g., Nessus, nmap, Wireshark)
- Understanding of security procedures [eg
- Ability to perform after-hours work and to be on-call during information security testing when needed
Senior Security Analyst Job Description
- Monitor open source and custom intelligence feeds for emerging vulnerabilities and threats, assess and triage these in the context of risk to the client base
- Maintain and operate associated security platforms (eg
- Work to identify critical event data for additional analysis and escalation as appropriate
- Collaborate with client, HP technical teams and other provider staff as required to mitigate security threats and respond to incidents
- Work closely with others to develop and enhance security monitoring, incident response plans and playbooks
- Seek to continuously improve event correlation and alerting processes and use cases to detect potential incidents
- Mentor, train and encourage more junior staff members
- Ensure that all Service Level Agreements pertaining to security events/incidents are met
- Perform intrusion analysis in a 24x7x365 environment using SIEM technology, packet captures, reports, data visualization and raw log analysis
- First point of escalation and mentor for Security Analysts
- Engages stakeholders in managing the Application Security Program and ensure that all tasks of the function are achieved in a timely manner
- Analyze proposed solutions architecture, technology, design and IT development processes to identify potential threats and vulnerabilities, and to recommend options that enhance the security of solutions and business processes
- Participate in, or lead testing, evaluation, upgrade and implementation of new and existing security applications to address emerging threats and vulnerabilities
- Published contributions to the security community
- A growing interest in information security, data privacy, or information technology auditing
- Possess excellent oral and written communication skills to prepare audit reports and discuss audit findings and recommendations with management
Senior Security Analyst Job Description
- Help to automate manual process currently done in the Cyber Security Department
- Take ownership of the SIEM platform deployment, general documentation, log sources documentation and maintenance of the platform itself
- Generate figures, reports and dashboards regarding SIEM platform
- Generate and maintain scripts for automating SIEM server tasks
- Provide additional inputs for further investigations based on logs collected in the SIEM platform
- Generate baseline of normal behavior of data to detect anomalies on the data collected
- Provide guidelines and recommendations to the SIEM and Big Data platform based on industry best practices
- Respond to security incidents across a wide array of technologies, mitigate and contain impacts, coordinate remediation efforts, summarize and make recommendations for improvements
- Provide up-to-date reports on security incidents and task progress, and centrally track in a timely fashion, incoming and existing problems
- Provide expertise, guidance, recommendations and documented security configurations for implementation of security tools and processes
- Knowledge of PCI, HIPAA, SOX, ISO, GLBA, and FedRAMP requirements, global data protection and privacy laws, is a bonus
- OEndpoint security products (HIPS, anti-virus, McAfee, Symantec, Trend Micro)
- OAbility to identify virus and Trojan-horse infections, investigate malware / spyware instances and conduct system cleaning techniques through company provided tools
- OAbility to perform analysis on malware and other malicious code identified through the various tools utilized by the SOC team
- Associates degree in Computer Science or relevant business experience
- Bachelor's degree in Computer Science, or other equivalent disciplines
Senior Security Analyst Job Description
- Creates processes and templates for security implementations
- Responsible for solution documentation in support of operational readiness, which may include training, process development and explanation of standards
- Contributes to and sets standards for security hardware, software and configuration management
- Researches and recommends ideas for proofs of concept for technology solutions
- Researches the impact of proposed or required changes (internally and by vendors) especially in the areas of hardware, software, performance, maintenance and cost
- Leads decision making for mitigating identified deficiencies and seek to understand the broader impact of the decisions made
- Identifies and evaluates technology internally and/or at third parties, internal controls which mitigate risks, and related opportunities for internal control improvements
- Leads security initiatives with system compliance tasks with operations and project management teams
- Review security incidents for all of our clients
- Work on customer deliverables for adherence to the established procedures and guidelines
- Previous experience working with email technologies
- Understanding of Enterprise email components (hardware, software)
- Bachelor degree from an accredited college in a related discipline, or equivalent experience/combined education with 3-5 years of professional experience
- Candidate must pass a National Agency Check (NAC) covering the past 5 years to obtain a Medium/BI Public Trust clearance
- A Bachelor's degree in Systems Engineering, Computer Science, Electrical Engineering, Mathematics, Information Technology (IT) Management, or equivalent and 15+ years of combined general engineering, business and technical analysis/consulting experience 10+ yearsof which are related to Enterprise Information Security, Risk Management, and Enterprise/Security Architecture
- Significant experience with the application of specific Security and Enterprise Architecture frameworks, standards, and best practices in designing and building a Security Architecture