SSUSA Job #668: Information Security Analyst

Job Description


                                             Information Security Analyst




Information Security Incident Response - Analyzes and assesses vulnerabilities in the infrastructure (software, hardware, networks).  Investigates available tools and countermeasures to remedy the detected vulnerabilities, and recommends solutions and best practices.  Analyzes and assesses damage to the data/infrastructure as a result of security incidents, examines available recovery tools and processes, and recommends solutions.  Tests for compliance with Information Security policies and procedures, and assists in the creation, implementation, and/or management of security solutions.  Monitors and reviews information security logs daily and performs security forensics when necessary.




  • Plan, implement and upgrade security measures and controls

  • Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction

  • Maintain data and monitor security access

  • Perform vulnerability testing, risk analyses and security assessments

  • Conduct internal and external security audits

  • Anticipate security alerts, incidents and disasters and reduce their likelihood

  • Manage network, intrusion detection and prevention systems

  • Analyze security breaches to determine their root cause

  • Recommend and install appropriate tools and countermeasures

  • Define, implement and maintain corporate security policies

  • Train fellow employees in security awareness and procedures

  • Coordinate security plans with outside vendors


Work Experience:


  • Minimum 3-5 years of experience with desktop, server and/or network administration in a mixed computing environment (Preferred 2 years of direct information security experience)






  • In-depth understanding of Information Security concepts

  • IDS/IPS, penetration and vulnerability testing

  • DLP, anti-virus and anti-malware

  • TCP/IP, computer networking, routing and switching

  • Firewall and intrusion detection/prevention protocols

  • Windows, UNIX and Linux operating systems

  • Network protocols and packet analysis tools

  • C, C++, C#, Java or PHP programming languages

  • Cloud computing

  • SaaS models

  • Security Information and Event Management (SIEM)

  • Directory Services and LDAP

  • Knowledge of the security requirements for HIPAA, HITECH, ISO 27001/27002 and SOX regulations


Must have strong communication skills, with demonstrated ability to successfully handle conflict and be able to maintain calm in stressful situations

  • Strong organizational and time management abilities

  • Strong analytical and problem-solving skills

  • Strong customer service skills

  • Writing, teaching and public speaking

  • Ability to draft policies, talk over issues with upper management and explain how your security plans fit into the larger corporate picture


Certifications (Preferred)


  • CompTIA Security+

  • GIAC Security Essentials (GSEC) (preferred)

  • Cisco Certified Network Associate (CCNA)

  • Microsoft MCSA (Preferred)

  • ECSA: EC-Council Certified Security Analyst


Job Location
Clifton, NJ

Position Type