security analyst

job summary: Our client has an opening for an Information Security Analyst to support an enterprise environment. Hybrid model with team environment. Paid time off and holidays and security certifications is a preferred. Candidate will be supporting critical systems, security alerts and other information technology and security tools.   location: Edison, New Jersey job type: Contract salary: $40 - 58 per hour work hours: 8am to 5pm education: Bachelors   responsibilities: RESPONSIBILITIES: Serve as a member of the information security teamAid in alerts and incident response with the Security Operations teamResearch, validate and tune security solutions to meet security and business requirementsAssist with security configuration standards for systems and business applications.Participate in technical and non-technical projects requiring information security oversight and to ensure policies, procedures and standards are met.Interface with internal and external auditors for risk assessments.Secure business applications and computing environments across public and hybrid cloud infrastructuresMaintain an up-to-date level of knowledge related to security threats, attack techniques, vulnerabilities, and mitigations that apply to the firm's technology environmentAssist management with business continuity and disaster recover exercisesPerform other duties as assigned Demonstration of attention to detail, empathy, proactive creation and maintenance of documentation are essential for this role. Our successful candidate has demonstrable experience in quickly ramping up with past client/employer organizations, with a keen ability to quickly learn security policies & procedures, and protocols. Threat Analysis, Phishing Analysis Experience Undergraduate degree (BS) in technology related field, e.g., computer science, systems engineering, electrical engineering, e Understanding of security principles and network communication models and corresponding protocols - Familiar with ServiceNow and system of record/workforce management tool - Alert management experience - Accountable for conducting phishing analysis, web proxies, endpoint detection and response, database monitoring - Accountable for conducting security analysis or audits - Possess high-level knowledge of assessment of Active Directory Security Group lifecycle management - Experience in conducting industry and/or third party threat intelligence for integration into our client's environment - ITIL-based training, experience, or certifications on SIEM are a plus - Demonstrated ability to create information security runbooks, knowledge management, and other process documentation; in support of daily, weekly, monthly, and quarterly reporting cadences - Security skills and tools: Carbon Black, Symantec Endpoint Protection, Imperva, Varonis, - LogRythm, Tripwire, Forescout, Symantec Cloud Access Security Broker (CASB), SecureMail, Symantec WebPulse, VMRay, Symantec Web Security Service - Ability to adapt to the use of new tools and approaches to address continuously emerging information security threats. - Desired Security Certificates: Security+ from CompTIA, Certified Ethical Hacker (CEH) or other related Information Security certificates   qualifications: Experience level: ExperiencedMinimum 2 years of experienceEducation: Bachelors  skills: SECURITY ANALYSTCEH (Certified Ethical Hackers)/PenTestNetwork Security (2 years of experience is required) Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.At Randstad, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com. Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility). For certain assignments, Covid-19 vaccination and/or testing may be required by Randstad's client or applicable federal mandate, subject to approved medical or religious accommodations. Carefully review the job posting for details on vaccine/testing requirements or ask your Randstad representative for more information.

job summary: Scope of Services Develops, evaluates and manages systems security across the enterprise. Areas of concentration include account management, password auditing, network based and Web application-based vulnerability scanning, virus management and intrusion detection. Requires technical expertise in systems administration and security tools, combined with the knowledge of security practices and procedures. Assists in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines). Prepares status reports on security matters to develop security risk analysis scenarios and response procedures. Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls. Involved in the evaluation of products and/or procedures to enhance productivity and effectiveness. Provides direct support to the business and IT staff for systems security related issues. Educates users on systems security standards and procedures. Must have broad technical knowledge of network operating systems (e.g., UNIX, NT). Education Bachelor's Degree in Computer Science, Information Systems, Business Administration, Information Security, or another related field; or equivalent work experience. Experience Four years of experience in the work related to the position is required. Primary Job Duties/ Tasks Serve as a member of the Computer Security Incident Response Team. Duties includes researching incidents, identifying corrective actions, documenting status and coordinating responses to Computer Security Incidents. Responsible for the tracking and monitoring of endpoint software viruses. Enforces endpoint security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security breaches, exceptions, updates, and maintains and documents security controls. Work in conjunction with the Patch Management and Configuration Team in identifying secure configurations for standard products. Provide support/information as needed for implementation of secure baselines through package roll out and/or group policy. After implementation of secure baselines, use tools to review and ensure compliance with established baselines. Responsible for the administration and maintenance of endpoint vulnerability products, endpoint vulnerability risk reporting, and routine endpoint vulnerability scanning, Job Specific Knowledge, Skills, and Abilities (KSAs) The submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas: 1. Knowledge in the use of appropriate security controls to protect the confidentiality, integrity and availability of information technology resources. 2. Knowledge of, and experience with, various computing technologies such as, but not limited to: Windows, Windows Server, Transmission Control Protocol/Internet Protocol (TCP/IP) 3. Knowledge of vulnerability management tools. 4. Knowledge in the use of information security practices and standards such as NIST, CIS Critical Security Controls and the Florida Cybersecurity Standards (74-2 Florida Administrative 60GG-2). Ability to review, assess and document compliance with standards. 5. Knowledge of Microsoft Systems Center Configuration Manager (SCCM) and other Microsoft support tools/technologies such as Group Policy and PowerShell. 6. Knowledge of the application of operating system security settings through direct manipulation of the registry. 7. Knowledge of Security Information and Event Management (SEIM) tools. Ability to utilize, configure and manage SPLUNK preferred but not required. 8. Skills in applying, analyzing and assessing information systems and security controls. 9. Skilled in the detection of software and hardware security problems. 10. Ability to analyze complex technical architecture for security issues. 11. Ability to be self-motivated, detail-oriented with excellent follow through. 12. Ability to assess and analyze risk and provide recommendations to successfully manage risk. 13. Ability to author documented analysis of systems to verify compliance with security controls. 14. Ability to effectively communicate orally and in writing to a variety of audiences. This includes the ability to communicate professionally with management, to communicate technical issues and concepts to non-technical staff, and to effectively explain security concepts and their benefit. 15. Ability to solve problems independently and with teams and exhibit sound judgement and decision-making skills. 16. Knowledge of Malwarebytes, Windows Defender, and other vulnerability scanning tools. General Knowledge Skills and Abilities (KSAs): The submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas: 1. Initiative: Must be able to comprehend assignments, organize workload, and meet deadlines with little direction. Must be able to monitor and analyze situations to determine the next step. 2. Communication: Can clearly convey information, in both written and verbal formats, to individuals or groups in a wide variety of settings (i.e., project team meetings, management presentations, etc.). Must have the ability to effectively listen and process information provided by others. 3. Customer Service: Works well with clients and customers (i.e., business office, public, or other agencies). Able to assess the needs of the customer, provide information or assistance to satisfy expectations or resolve a problem. 4. Decision Making: Makes sound, well-informed, and objective decisions utilizing critical thinking skills and analysis. 5. Flexibility: is open to change, new processes (or process improvement), and new information. Can adapt in response to new information, changing conditions, or unexpected obstacles. Ability to receive and give constructive criticism and maintain effective work relationships with others. 6. Interpersonal: Shows friendliness, courtesy, understanding, and politeness to others 7. Leadership: Motivates, encourages, and challenges others. Can adapt leadership styles in a variety of situations. 8. Problem Solving: Able to identify, evaluate, and use sound judgement to generate and evaluate alternative actions, and make recommendations as accordingly. 9. Team Building: Encourages, inspires, and guides others toward accomplishing the common goal as an equal member of the team. 10. Quality Assurance: Knowledge of the ideologies, techniques and tools for quality assurance and control. The ability to put the ideologies, techniques, and tools into practice.   location: Tallahassee, Florida job type: Contract salary: $55 - 65 per hour work hours: 8am to 5pm education: No Degree Required   responsibilities: Scope of Services Develops, evaluates and manages systems security across the enterprise. Areas of concentration include account management, password auditing, network based and Web application-based vulnerability scanning, virus management and intrusion detection. Requires technical expertise in systems administration and security tools, combined with the knowledge of security practices and procedures. Assists in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines). Prepares status reports on security matters to develop security risk analysis scenarios and response procedures. Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents security controls. Involved in the evaluation of products and/or procedures to enhance productivity and effectiveness. Provides direct support to the business and IT staff for systems security related issues. Educates users on systems security standards and procedures. Must have broad technical knowledge of network operating systems (e.g., UNIX, NT). Education Bachelor's Degree in Computer Science, Information Systems, Business Administration, Information Security, or another related field; or equivalent work experience. Experience Four years of experience in the work related to the position is required. Primary Job Duties/ Tasks Serve as a member of the Computer Security Incident Response Team. Duties includes researching incidents, identifying corrective actions, documenting status and coordinating responses to Computer Security Incidents. Responsible for the tracking and monitoring of endpoint software viruses. Enforces endpoint security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security breaches, exceptions, updates, and maintains and documents security controls. Work in conjunction with the Patch Management and Configuration Team in identifying secure configurations for standard products. Provide support/information as needed for implementation of secure baselines through package roll out and/or group policy. After implementation of secure baselines, use tools to review and ensure compliance with established baselines. Responsible for the administration and maintenance of endpoint vulnerability products, endpoint vulnerability risk reporting, and routine endpoint vulnerability scanning, Job Specific Knowledge, Skills, and Abilities (KSAs) The submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas: 1. Knowledge in the use of appropriate security controls to protect the confidentiality, integrity and availability of information technology resources. 2. Knowledge of, and experience with, various computing technologies such as, but not limited to: Windows, Windows Server, Transmission Control Protocol/Internet Protocol (TCP/IP) 3. Knowledge of vulnerability management tools. 4. Knowledge in the use of information security practices and standards such as NIST, CIS Critical Security Controls and the Florida Cybersecurity Standards (74-2 Florida Administrative 60GG-2). Ability to review, assess and document compliance with standards. 5. Knowledge of Microsoft Systems Center Configuration Manager (SCCM) and other Microsoft support tools/technologies such as Group Policy and PowerShell. 6. Knowledge of the application of operating system security settings through direct manipulation of the registry. 7. Knowledge of Security Information and Event Management (SEIM) tools. Ability to utilize, configure and manage SPLUNK preferred but not required. 8. Skills in applying, analyzing and assessing information systems and security controls. 9. Skilled in the detection of software and hardware security problems. 10. Ability to analyze complex technical architecture for security issues. 11. Ability to be self-motivated, detail-oriented with excellent follow through. 12. Ability to assess and analyze risk and provide recommendations to successfully manage risk. 13. Ability to author documented analysis of systems to verify compliance with security controls. 14. Ability to effectively communicate orally and in writing to a variety of audiences. This includes the ability to communicate professionally with management, to communicate technical issues and concepts to non-technical staff, and to effectively explain security concepts and their benefit. 15. Ability to solve problems independently and with teams and exhibit sound judgement and decision-making skills. 16. Knowledge of Malwarebytes, Windows Defender, and other vulnerability scanning tools. General Knowledge Skills and Abilities (KSAs): The submitted candidate must be able to apply common knowledge, skills, and abilities in the following areas: 1. Initiative: Must be able to comprehend assignments, organize workload, and meet deadlines with little direction. Must be able to monitor and analyze situations to determine the next step. 2. Communication: Can clearly convey information, in both written and verbal formats, to individuals or groups in a wide variety of settings (i.e., project team meetings, management presentations, etc.). Must have the ability to effectively listen and process information provided by others. 3. Customer Service: Works well with clients and customers (i.e., business office, public, or other agencies). Able to assess the needs of the customer, provide information or assistance to satisfy expectations or resolve a problem. 4. Decision Making: Makes sound, well-informed, and objective decisions utilizing critical thinking skills and analysis. 5. Flexibility: is open to change, new processes (or process improvement), and new information. Can adapt in response to new information, changing conditions, or unexpected obstacles. Ability to receive and give constructive criticism and maintain effective work relationships with others. 6. Interpersonal: Shows friendliness, courtesy, understanding, and politeness to others 7. Leadership: Motivates, encourages, and challenges others. Can adapt leadership styles in a variety of situations. 8. Problem Solving: Able to identify, evaluate, and use sound judgement to generate and evaluate alternative actions, and make recommendations as accordingly. 9. Team Building: Encourages, inspires, and guides others toward accomplishing the common goal as an equal member of the team. 10. Quality Assurance: Knowledge of the ideologies, techniques and tools for quality assurance and control. The ability to put the ideologies, techniques, and tools into practice.   qualifications: Experience level: ExperiencedMinimum 4 years of experienceEducation: No Degree Required (required)  skills: Endpoint Software SecurityNetwork SecurityUNIXNTTransmission Control ProtocolInternet ProtocolCIS Critical Security ControlsNISTCyber SecuritySCCMGroup PolicyPowerShellSIEMSplunkWindowsWindows Server Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.At Randstad, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com. Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility). For certain assignments, Covid-19 vaccination and/or testing may be required by Randstad's client or applicable federal mandate, subject to approved medical or religious accommodations. Carefully review the job posting for details on vaccine/testing requirements or ask your Randstad representative for more information.

job summary: Analyzes and implements all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. - Complies and enforces Sarbanes Oxley regulations to ensure that auditing meets compliance requirements. - Interfaces with, consults and advises user community to facilitate their security needs and implements procedures to accommodate. Identify potential threats and responds appropriately. - Monitors and ensures that user community understands and adheres to necessary procedures to maintain security. Determines appropriate action for remediation and implementation when noncompliant situations are discovered. - Conducts accurate evaluation of level of security required and enforces adherence to security policies in provisioning access. - Analyzes, recommends, and implements changes to procedures and systems to enhance data systems security. Provides management with status reports on activities. - Process and respond to requests submitted through the ServiceNow system, and abiding by security guidelines and procedures. - Provide technical support for applications as they relate to security functions and access. - Interact and maintain effective relationships with other teams and locations and helps develop documentation as new processes and procedures evolve. - Serve as Level 2 support for Help Desk analysts regarding security access issues and provides 24x7 on-call support. - Possesses and applies broad knowledge of concepts and principles or exhibits technical expertise in a specific area; works with minimal instruction or guidance with appreciable latitude for un-reviewed action or decisions; performs moderately difficult assignments with diverse scope and complexity, requiring a great deal of originality, creativity and problem solving with initiative and independent judgment required. - Mentors, trains, and provides guidance to other analysts on technical and administrative disciplines. - Capable of leading small projects within the team. - Solves complex security issues with no assistance. - Checks work of other team members for Quality Assurance and maintains an error log for management. Qualifications - Bachelor's degree in computer science or information systems or equivalent education/experience. - Minimum of 5 years previous related work experience. - Requires proficient knowledge of data management and security processes as they relate to Mainframe RACF and UNIX, JCL, IBM utilities, TSO/ISPF, and CLISTs. - The ability to maintain regulatory compliance is required. - Ability to work in a team environment, adapt quickly to change and learn new applications or environments. - Must be highly organized and maintain quality work while meeting deadlines. - Extreme attention to detail is necessary due to audit and regulatory requirements.  location: CEDAR RAPIDS, Iowa job type: Contract salary: $65 - 90 per hour work hours: 8am to 4pm education: Bachelors   responsibilities: Analyzes and implements all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. - Complies and enforces Sarbanes Oxley regulations to ensure that auditing meets compliance requirements. - Interfaces with, consults and advises user community to facilitate their security needs and implements procedures to accommodate. Identify potential threats and responds appropriately. - Monitors and ensures that user community understands and adheres to necessary procedures to maintain security. Determines appropriate action for remediation and implementation when noncompliant situations are discovered. - Conducts accurate evaluation of level of security required and enforces adherence to security policies in provisioning access. - Analyzes, recommends, and implements changes to procedures and systems to enhance data systems security. Provides management with status reports on activities. - Process and respond to requests submitted through the ServiceNow system, and abiding by security guidelines and procedures. - Provide technical support for applications as they relate to security functions and access. - Interact and maintain effective relationships with other teams and locations and helps develop documentation as new processes and procedures evolve. - Serve as Level 2 support for Help Desk analysts regarding security access issues and provides 24x7 on-call support. - Possesses and applies broad knowledge of concepts and principles or exhibits technical expertise in a specific area; works with minimal instruction or guidance with appreciable latitude for un-reviewed action or decisions; performs moderately difficult assignments with diverse scope and complexity, requiring a great deal of originality, creativity and problem solving with initiative and independent judgment required. - Mentors, trains, and provides guidance to other analysts on technical and administrative disciplines. - Capable of leading small projects within the team. - Solves complex security issues with no assistance. - Checks work of other team members for Quality Assurance and maintains an error log for management.   qualifications: Experience level: ExperiencedMinimum 5 years of experienceEducation: Bachelors  skills: MainframeSECURITY ENGINEERRACFUNIXJCLIBM UtilitiesRegulatory Affairs / Compliance Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.At Randstad, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com. Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. In addition, Randstad offers a comprehensive benefits package, including health, an incentive and recognition program, and 401K contribution (all benefits are based on eligibility). For certain assignments, Covid-19 vaccination and/or testing may be required by Randstad's client or applicable federal mandate, subject to approved medical or religious accommodations. Carefully review the job posting for details on vaccine/testing requirements or ask your Randstad representative for more information.