Cloud Cybersecurity Analyst

B

Blue Star Partners LLC

Cloud Cybersecurity Analyst

Chicago, IL +1 location
Full Time
Paid
  • Responsibilities

    Rate: $75 - $85/hr

    Location: Minneapolis, MN (Hybrid)

    Contract Type: W2

    Contract to Hire: Possible

    High-level Scope: Environment compliance management with a focus on configuration management & reporting

    The Cybersecurity analyst is a security governance, risk and compliance role.

    Responsibilities:

    · Review of Firewall Rules as well to evaluate new rule requests in the firewall change control tool for overall compliance to the Group Information Security Framework, (GISF).

    · Ensure SIEM log reviews are conducted and provide reporting quarterly.

    · Assessment and management of control frameworks in coordination with control owners. (Ownership, operationalization, maintenance & testing) at the cadence documented within the individual controls.

    · Required to review & validate the security governance, risk & compliance of new IT Architecture to ensure compliance to the required frameworks.

    · Ensure Incident & change management in ServiceNow, RSA Archer and Jira are followed through to completion by the accountable individuals in a timely manner to support migrations and net new deployments are compliant to the GISF.

    · Ensure that new Configuration Item deployments in the Card Data Environment or Hybrid Cloud are compliant to the hardening, (configuration) guidelines as well as identifying risks within existing, proposed and newly deployed services, applications, or products as well as ensure identified gaps have a remediation path.

    · Define, document, implement & handover of any required compensating controls for known IT & IS risks as well as newly discovered IT & IS risks in order to comply with the required frameworks so that successful annual assessments can be achieved.

    · Manage & maintain Group Penetration test requirements by ensuring that internet facing infrastructure and applications are subject to testing as required by the GISF and leverage the Allianz Infrastructure Penetration Testing (IPT) service at the cadence required.

    Credentials:

    · Bachelor’s degree in Computer Science, Information Systems, or equivalent education or work experience (Preferred)

    · 4+ years of prior relevant experience

    · Advanced certifications such as SANS, CISSP or CISM and/or SIEM-specific training and certification

    · Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.

    · Experience with vulnerability scanning solutions

    · In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (ArcSight, Splunk)

    ** Must be Authorized to Work in the US**

    ** No Visa Sponsorships**

    ** Local Candidates only**

  • Locations
    Chicago, IL • Minneapolis, MN