Senior Information Security Analyst

Posted: 08/16/17 | SHARE:

Description:

Vacancy Number:  2018-62

Position:  Senior Information Security Analyst

Location:  Regional Information Center - Albany

Starting Salary:  $49,043-$73,478 based on experience and qualifications. The selected applicant will be subject to a fingerprint supported criminal history background check in accordance with SAVE Legislation effective July 1, 2001.

Basic Function:  The work involves responsibility for assessing, testing, reporting and recommending appropriate remediation measures within the information security and systems architecture of the Northeastern Regional Information Center (NERIC) Data & Network Operations Center including end user networks and devices. This class differs from that of an Information Security Analyst by virtue of the fact that a Senior Information Security Analyst position may exercise leading the work of others. The incumbent will ensure information security access management, processes and industry standards are followed and maintained. The incumbent may assist BOCES Network Services personnel with identifying and troubleshooting issues relating to information security. Work is performed under the general supervision of a BOCES Supervisor. Does related work as required.

Reponsibilities:

 Leads the information and security work of the Data & Network Operations Center of the Regional Information Center;

 Monitors system vulnerability, analyzes findings and performs necessary remediation;

 Participates in network placement and design review;  Assists with activities for providing back-up, recovery and business continuity;

 Diagnoses and resolves systems, hardware and software problems;

 Reviews daily security appliances and system logs;

 Supports forensic and audit reviews to ensure compliance with established standards;

 Communicates results of daily internal system log analysis and review to appropriate staff;

 Performs patching of security platforms;  Certifies acceptance of data signatures;

 Advises and assists with system performance and data related tuning.  Good knowledge of a data & network operations center, infrastructure, systems management, structures and techniques;

 Good knowledge of electronic data processing systems, principles, practices and procedures of systems and applications programming;

 Good knowledge of security events incident management (SEIM) platforms;

 Good knowledge of security login platforms;

 Working knowledge of electronic data transmission storage and access control;

 Working knowledge of common information management frameworks such as

 Familiarity with current literature, sources of information and technological developments in the field of information security and systems architecture;

 Ability to analyze systems requirements of a variety of applications and to design appropriate infrastructures;

 Ability to track and maintain the inventory of infrastructure, replacement lifecycle and relative budget and planning;

 Ability to prepare reports and diagrams relative to systems architecture;

 Ability to direct and review the work of others;

 Ability to prepare written and oral reports;

 Ability to accurately convey both written and verbal directions;

 Ability to form and maintain effective working relationships;

 Ability to exercise independent judgment;

 Physical condition commensurate with the demands of the position.

Qualifications:

A. Graduation from a regionally accredited college or university or one accredited by the New York State Board of Regents to grant degrees with a Bachelor’s degree in information security, information systems, computer science, information resources management, information technology or a closely related field, and six (6) years of work experience in information technology, four (4) years of which included, or was closely related to, two of the eight domains of information security1; OR,

B. Graduation from a regionally accredited college or university or one accredited by the New York State Board of Regents to grant degrees with an Associate’s degree in information security, information systems, computer science, information resources management, information technology or a closely related field, and eight (8) years of work experience in information technology, four (4) years of which included, or was closely related to, two of the eight domains of information security1.

NOTES:

1. The following are the eight domains of information security: 1. Security and Risk Management; 2. Asset Security; 3. Security Engineering; 4. Communication and Network Security; 5. Identity and Access Management; 6. Security Assessment and Testing; 7. Security Operations; and, 8. Software Development Security.

2. Certifications in the domains of information security, such as CISSP, SSCP, CCSP, CAP, CSSLP, CCFP, or HCISPP, may be substituted for two (2) years of experience.

Vacancies are filled by certified list provided by Albany County Civil Service. Should no certified list be available, candidates appointed to this position will be serving in a provisional appointment in accordance with New York State Civil Service Law. The candidate must successfully complete a competitive examination and be eligible for appointment in accordance with Civil Service Law and the Civil Service Rules for Albany County to obtain a permanent appointment.

Starting Date: As soon as possible

Application Deadline:  August 18, 2017

Apply to:

CRBRecruitment@neric.org which should include your letter of interest and resume.

Return to job listings