Information Security Analyst in Orlando, FL at Holiday Inn Club Vacations

Date Posted: 3/21/2020

Job Snapshot

Job Description

POSITION DESCRIPTION:

 

The Security Analyst is responsible for providing administration and oversight of several security technologies. These responsibilities include configuration and management of various security hardware/software applications, monitoring and alerting to security threats, and facilitating the remediation of those threats. The security analyst provides services and support across a diverse range of business applications, while adhering strictly to compliance and operational risk controls in accordance with regulatory standards, and HCV’s policies and practices. The position requires a high degree of technical proficiency and familiarity with software, system and network security issues in large enterprise environments.

 

ESSENTIAL DUTIES AND TASKS:

 

  • Manage, maintain and monitor multiple security technologies, such as vulnerability scanning solutions, IDS/IPS, anti-virus technologies, DLP capabilities, SIEM technologies, host forensics and malware analysis, web application firewalls and proxy solutions.

 

  • Assess security information, triaging and responding to security events, identify false positives, and conduct correlation analysis across numerous internal and external data sources while prioritizing information security incidents.

 

  • Coordinates the handling and resolution of security incidents, to include system intrusions and abuse and acts as a primary point of contact for security operations team.

 

  •   Provides technical guidance to the Information Technology staff about threats, risks and control measures associated with new and emerging information systems technologies

 

  • Reviews, updates, and enforces data security practices within the corporate and resort systems environments; tests for exposures to ensure adherence to guidelines and procedures and works with platform experts to implement remedial measures as appropriate.

Job Requirements

 



EDUCATION and/or EXPERIENCE

  • Bachelor’s Degree in Information Systems, Computer Science or equivalent combination of education, training, or work experience.
  • Hands on experience with mitigating security controls (i.e., anti-virus, IPS/IDS, DLP, web and network proxies, URL content filtering, multi-factor authentication, SSL VPN’s) and how they work in an overall defense in depth risk assessment methodology.
  • Experience in incidence response required; (e.g. In-depth knowledge of Windows/Unix operating system forensics, event logging systems, authentication methods, remote and local web application security, penetration testing).
  • Solid understanding of network, workstation, and server security configuration


 



CERTIFICATES, LICENSES, REGISTRATIONS

  • One or more of the following industry certifications is required: CISSP, CISM, GIAC, SSCP, CEH
    Security+

 



QUALIFICATIONS

  • Minimum of 4 years of experience in an IT role focusing on information security
  • Ability to establish cross-functional, collaborative relationships with business and technology partners
  • Excellent relationship-building skills and cultural awareness, along with the ability to work effectively in a matrixed environment
  • Ability to effectively prioritize and execute tasks in a high-pressure environment