Security Incident Response Analyst
| Company | Global Payments |
|---|---|
| Location | Lehi, UT, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Mid Level, Senior |
Requirements
- Bachelor’s Degree
- Relevant Experience or Degree in: Bachelor’s degree in Computer Science, Info Security, or related field. Or relevant work experience in a related field.
- Typically Minimum 2 Years Relevant Exp
- Including network operations or engineering or system administration on Unix, Linux, MAC(Message Authentication Code), or Windows; common security operations, intrusion detection systems, Security Incident Even Management systems, Penetration Testing, Web Application assessment, Secure Coding practices.
Responsibilities
- Under moderate supervision monitors complex systems and response to known and emerging threats against the Global Payments network via intrusion detection software
- Conducts detailed, comprehensive investigation of security issues by reviewing security log data, interpreting data in support of security event management process from various data feeds and triages on a wide variety of security events.
- Under supervision performs incident handling process by maintaining knowledge in implementation of containment, protection and remediation activities.
- Enhances knowledge of new and emerging threats that can affect the organization’s information assets by analyzing of third party software/solutions, IT configuration changes (including access control requests), and network/system architecture from risk perspective
- Under supervision designs and configures security systems, including proxy, remote access, mail gateway, intrusion prevention, wireless networking, data leak prevention, security information and event management and web application firewalls.
- Following guidance assesses and disseminates threats related to the enterprise in regard to current vulnerability by managing and developing an emerging threat model.
- Under supervision assesses risks based on changes to implementation of ISO(International Organization for Standardization/BSO(Business Services Online); enhances knowledge of PCI(Payment Card Industry)/Logical Security guidelines and models, HIPPA(health insurance portability and accountability act), PII(Personally Identifiable Information), and Card personalization.
- Participates in creating cost effective solutions for system/application development regarding Information Security processes and concepts in applicable systems and software.
- Works under close supervision to perform day-to-day Information Security functions pertaining to numerous security software products and processes.
Preferred Qualifications
- Professional certifications CISSP(Certified Information System Security Professional),CISM(Certified Information Security Manager) ,CISA(Certified-Information-Systems-Auditor),GSEC(GIAC Security Essentials) ,Network +,Security +
- Typically Minimum 4 Years Relevant Exp
- Knowledge of industry standard security compliance programs PCI(Payment Card Industry), SOX(Sarbanes-Oxley) , GLBA(Gramm Leach Bliley Act), etc.)