System Security Analyst Job Description
System security analyst
provides information Security System Engineering support and technical execution of information security activities associated with the authorization of NIST Risk Management Framework (RMF) hardened information systems.
System Security Analyst Duties & Responsibilities
To write an effective system security analyst job description, begin by listing detailed duties, responsibilities and expectations. We have included system security analyst job description templates that you can modify and use.
Sample responsibilities for this position include:
Possesses and applies broad knowledge of concepts and principles
Responsible for building functional and technical specifications to meet business requirements while driving cost efficiency in this solution delivery within the JDE
Ensuring TEMPEST requirements are maintained
Provide content for FAA, and DOT shared situational awareness mechanisms , websites, blogs, and Wikipedia style mechanisms
Search for anomalous activity and investigate to provide identification
Other duties as requested by the Contracting Officer Representative and SOC management
Not unilaterally bypass, strain, or test IA mechanisms
Monitor mitigation and remediation progress
Conducts risk assessments for business applications and computer installations
Maintains an in-depth knowledge of specific technical specialisms and provides expert advice regarding their application
System Security Analyst Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for System Security Analyst
List any licenses or certifications required by the position: CISSP, CEH, HBSS, DISA, IAM, III, IA, CE, IAT, LVL
Education for System Security Analyst
Typically a job would require a certain level of education.
Employers hiring for the system security analyst job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Master's Degree in Computer Science, Technical, Information Technology, Education, Engineering, Information Security, Information Systems, Spectrum, Business, Information Assurance
Skills for System Security Analyst
Desired skills for system security analyst include:
DISA STIGs/FDCC requirements
Defense-in-depth
Information security and assurance principles and associated supporting technologies
NIST publications and is able to work strategically on transition of DIACAP to RMF
Windows operating systems
Linux
Risk Management Framework
Active Directory and group policy management
Basic scripting and programming
Concepts and principles
Desired experience for system security analyst includes:
CISSP and/or SANS/GIAC Certification (equivalent to two years of experience)
Bachelor’s degree in Computer Science or Information Systems OR Minimum ten (10) years of relevant professional experience
At least four (4) of the 6 years in the role of ArcSight Content development
At least four (4) years of experience must be within cyber intelligence analysis
Experience with information security devices (e
Technical expertise in the capabilities and techniques of hacker/hacktivist groups, criminal syndicates, and advanced persistent threats conducting computer network exploitation and attacks against the U.S. government resources and critical infrastructure
System Security Analyst Examples
1
System Security Analyst Job Description
Job Description Example
Our company is looking for a system security analyst. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for system security analyst
- Perform Information System (IS) scanning based on vulnerabilities and threats or regulatory compliance
- Establish a SAP level security program IA W DoD 5205.07 Volumes 1-4, the Director of Central Intelligence Directives (DCID) 6/9 (rescinded)
- Monitor Tier 1 Analyst performance investigating incoming events using available CSARC- tools
- Serve as point of escalation for Tier 1 Analysts and ensure Tier 1 event(s) are addressed in a timely manner using available reporting and metrics
- Approve and, if necessary, further investigate Tier 1-escalated events
- Mentor and identify training needs for level 1 analysts to improve detection capability within the CSARC
- Manage CSARC event and information intake to include gathering intelligence reports, monitoring ticket queues, investigating reported incidents, and interacting with other security and network groups as necessary
- Serve as detection authority for initial incident declaration
- Serve as shift subject matter experts on incident detection and analysis techniques providing guidance to junior analysts and making recommendations to organizational managers
- Drive and monitor shift-related metrics ensuring applicable reporting is gathered and disseminated per CSARC requirements
Qualifications for system security analyst
- A team oriented focus is essential
- Security Certifications such as GIAC, CISM, CISA, CISSP are desirable
- Diplomas, certificates or other accreditations in networking, programming or database are desirable
- Background including System Administration experience with Windows Server 2012R2, Windows 10, Windows 8.1, and Windows 7
- Bachelor’s degree in Computer Science or Information Systems and 6 Years of Experience OR Ten (10) years of relevant professional experience to include
- At least Six (6) years of experience in an IT role
2
System Security Analyst Job Description
Job Description Example
Our company is looking to fill the role of system security analyst. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for system security analyst
- Develops functional requirements for integrated telecommunications systems
- Rogue System Detecion (RSD)
- USAF Asset Compliance Configuration Module (ACCM) and ePO dependencies such as MS SQL Server 2008 R2 and Apache
- Manage, update, and submit RMF packages
- Assist with creating, modifying, or verifying all artifacts and documents required for RMF packages
- Review and ensure all remote site ATOs and connection packages meet requirements ad are kept up to date
- Provide guidance to the Government on any matters relating to RMF and security policies
- Assist with, review, and recommend approval for memorandums of agreement with remote stations
- Assist in the development and implementation of government approved information security procedures and system security plans for the operation of networked and standalone classified computers systems, coordinate government agency approvals
- Perform information system hardening configurations in accordance with JSIG, DISA STIGs and customer standards
Qualifications for system security analyst
- At least Four (4) years of experience specific to network security analysis, using intrusion detection systems
- Experience with intelligence briefings, threat analysis, intelligence products, early indications and warnings, and Open Source intelligence techniques
- All candidates must possess an active TS/SCI Clearance
- A background including System Administration experience with Windows Server 2012R2, Windows 10, Windows 8.1, and Windows 7
- Must have strong experience in government solutions engineering, concept development and network architecture definition
- Must have strong experience in government solutions engineering, concept development and network definition
3
System Security Analyst Job Description
Job Description Example
Our innovative and growing company is hiring for a system security analyst. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for system security analyst
- Assist with or perform other IA tasks in consonance with Information Assurance Manager
- Perform other information assurance or administrative tasks
- Handle personal, confidential and Privacy Act information in a professional manner
- Ensuring compliance to governing documents and security policies and assist in regulatory periodic assessments
- Implementing and testing state-of-the-art secure operating systems, networks, and database solutions
- Staying current with system vulnerabilities and provide current security training to all system users
- Conducting risk assessments and provide recommendations for secure implementation and compliance in accordance with government regulations and information assurance/cybersecurity guidelines
- Creating, maintaining and submitting information system security documents and reports to regulatory agencies
- Assessing and mitigating system security threats/risks throughout the program life cycle
- Establishing system security documentation, assisting with the implementation of security procedures, and verify information system security requirements
Qualifications for system security analyst
- Candidate must have a good understanding of deployment, and operations of security solutions for Database Activity Monitoring (DAM) and Web Application Firewall (WAF)
- Hands on experience in deployment Database Activity Monitoring (DAM) and Web Application Firewall (WAF) will be an added advantage
- Experience in Imperva Secure Sphere solution
- Min 5years of work experience with a large organization or a banking environment
- Experience troubleshooting 2FA issues
- Manage a diverse and complex variety of Security solutions and deployment types related to the use and implementation of Trend Micro portfolio
4
System Security Analyst Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of system security analyst. If you are looking for an exciting place to work, please take a look at the list of qualifications below.
Responsibilities for system security analyst
- Providing architectural / risk based analysis of information assurance / cyber security features and relate existing system to future needs and trends and requirements
- PKI administrator
- Establish strict program control processes to ensure mitigation of risks and support obtaining assessment and authorization of systems
- Perform analyses and tests to validate established security requirements and to recommend additional security requirements and safeguards
- Configuring user access/user profiles (set-up, termination, analysis)
- Business Unit Continuity Planning (BUCP) activities
- You will work closely with Analysts, Integrators, Release Managers, and Business Units to provide security support and guidance
- You will work with our business partners to ensure we are meeting expectations and adjust when needed
- As we grow you will work closely with other teams in the organization
- You will look for places to improve service and implement new processes
Qualifications for system security analyst
- Candidate must have a good understanding and hands on experience in 2FA (Multifactor authentication for remote desktop)
- Good Understanding of Safenet Multi-factor, Multi-token Authentication System
- Hands on experience in security systems, anti-virus software Host Protection & Adv Threat Protection (Trend Micro),authentication systems, log management, content filtering, etc
- Experience with VMware ESXi, ESX Servers and vCenter Server
- Knowledge of Network DLP (Force Point)
- BA/BS in Information Systems Management, Computer Science or related discipline
5
System Security Analyst Job Description
Job Description Example
Our innovative and growing company is looking to fill the role of system security analyst. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for system security analyst
- Administer DNS Zones (internal/external)
- Administrer backupExec (create backup/restore jobs)
- Define file security permissions
- Define and review support for servers (proactive weekly error log checks – Srv, Replication mgr., backupexec, Anti-virus, etc)
- Troubleshoot email accounts (mailbox - Exchange)
- Maintaining appropriate levels of security
- Mentor Support tiers 1 and 2
- Trouble shoot Cisco VoIP phone System
- Deployment of hardware and software
- Expert knowledge of Microsoft Server Systems
Qualifications for system security analyst
- 1-2 years SOC related experience
- Experience managing cases-incidents and enterprise SIEM systems
- A solid understanding of networking, cyber security concepts, vulnerability identification and cyber threat intelligence is necessary
- Excellent communications skills, that includes the ability to provide formal documentation of analysis and/or research results to include briefings, reports, writing, training of lower tiers, and editing at a technical/professional level
- Must be detail oriented, well organized, thrive in a sense-of-urgency environment, leverage best practices, and most importantly, innovate through any problem with a can-do attitude
- NIST SP 800-53 Information System Continuous Monitoring implementation