Security Analyst

Computer World Services Corp (CWS) is seeking an experienced Security Analyst/Data Security Specialist to support the planning, coordination, and implementation of the organization's information security programs. This role involves maintaining and enhancing the security infrastructure, including firewalls, IDS/IPS, log aggregation, and file integrity monitoring systems, while addressing potential threats and vulnerabilities. The ideal candidate will possess a strong understanding of security practices, tools, and protocols and work closely with teams to investigate and resolve data security issues.

Key Tasks & Responsibilities

• Security Infrastructure Management:
• Administer and manage firewall systems, intrusion detection and prevention systems (IDS/IPS), log aggregation systems, web traffic filtering appliances, and file integrity monitoring applications.
• Design, implement, and monitor security measures for LAN/WAN environments to safeguard information systems.
• Threat Monitoring and Incident Response:
• Investigate alerts from Data Loss Prevention (DLP) agents and support the resolution of DLP rule problems.
• Monitor systems for potential threats and respond promptly to security incidents.
• Security Program Support:
• Facilitate the identification of current security infrastructure and define requirements for future programs.
• Collaborate with teams to implement encryption techniques and deploy security tools effectively.
• Technical Expertise:
• Evaluate and recommend commercial products and technologies for security solutions.
• Maintain a working knowledge of hardware/software firewalls, communication protocols, and security tools.
• Documentation and Compliance:
• Document security incidents, system configurations, and process changes.
• Ensure compliance with organizational and industry security standards and best practices.
• Incorporate application security testing using Netsparker to identify, validate, and remediate web application vulnerabilities, improving overall system security and compliance.

• Bachelor's degree in Computer Science, Information Technology Management, or Engineering.
• Alternatively, four years of related experience may substitute for the educational requirement.
• Experience:
• 5-7 years of experience in information security, network security, or related fields.
• Technical Skills:
• Proficient in administering firewall systems, IDS/IPS, and DLP solutions.
• Strong understanding of communication protocols, encryption techniques, and security tools.
• Familiarity with log aggregation systems, web traffic filtering appliances, and file integrity monitoring applications.
• Netsparker experience
• Soft Skills:
• Strong analytical and problem-solving skills.
• Excellent verbal and written communication abilities.
• Ability to work collaboratively in a team and adapt to rapidly changing security landscapes.
• Preferred Qualifications:
• Relevant certifications such as CISSP, CISM, CompTIA Security+, or CEH.
• Hands-on experience with SIEM platforms and advanced threat detection tools.
• Knowledge of security frameworks such as NIST, ISO 27001, or CIS Controls.

Certifications

• Relevant certifications such as CISSP, CISM, CompTIA Security+, or CEH.
• ITIL certification v4 preferred.

Security Clearance

• Applicants must be eligible to obtain Public Trust clearance.