- Salary: $35.05 – $55.21 Hourly // $72,904.00 – $114,836.80 Annually
- Closing Date: 06/01/18 11:59 PM
Performs risk analysis and mitigation in support of the design, deployment, administration, maintenance and monitoring of all MSD IT data, application, messaging, network and infrastructure systems. Conducts research and maintains knowledge, skills, and proficiency in order to support design and implementation of secure IT technologies/solutions. Interacts with telecom, security providers and other technology vendors to both negotiate and oversee security contractual services as needed. Partners with other IT and business teams to enhance information security practices. Leverages security skills in support of MSD Operations and Engineering team initiatives.
ESSENTIAL JOB FUNCTIONS:
Advises management, project teams, technical teams, and IT Operations of IT security risks. Assists in prioritizing risks and developing comprehensive solutions to mitigate such risks. Supports and drives a culture of active security awareness. Conducts penetration testing to discover and correct vulnerabilities in information systems. Monitors the internal control systems to ensure appropriate access levels are maintained. Assists with the training of, and provides direction for, employees on wide range of security topics. Provides hands-on security expertise and leadership for business systems and infrastructure implementation projects. Develops and maintains Information Security Policies, standards and procedures. Communicates Security Policies and Procedures to the user community. Plans upgrades of all security related tools used throughout the environment. Assists with the information technology risk assessments and external security audits. Builds strong, mutually respectful relationships with other MSD divisions to facilitate broad cooperation, mutual support, economies of scale, efficiencies and team learning.
KNOWLEDGE, SKILLS AND ABILITIES NECESSARY TO THE WORK:
Knowledge of virtual desktops, anti-virus tools, network protocols, VPN’s and network management tools; skill in systems analysis and integration, Active Directory, help desk ticketing systems, knowledge bases, asset management, change control, security basics (backup, patch, strong passwords), and penetration tools; skill in implementing log & event monitoring systems, and configuration of associated analytical tools; skill in problem solving and analysis; skill in oral and written communication; skill in cleansing/isolating malware and restoring system operation; skill in working supportively with IT Infrastructure Engineers in a largely Windows-based server environment running on VMWare ESX; ability to configure and support the security aspects of firewalls, intrusion detection system (IDS)/intrusion prevention system (IPS) and 2-factor authentication systems; ability to adapt to a changing work environment; ability to exercise judgment and discretion; ability to work in a team environment; ability to maintain confidential information; ability to work under heavy surges in workload and deadline pressure.
Bachelor Degree in Computer Science, Management Information Systems, Information Security, Data Processing or a related field; five or more years of IT security experience; an equivalent combination of education and experience may be substituted. CISSP certification is preferred. Must have a valid driver’s license. Must have safe work and driving habits.