This site uses cookies. To find out more, see our Cookies Policy

IT Security Analyst Sr in Kandahar at DynCorp International LLC

Date Posted: 1/31/2019

Job Snapshot

  • Employee Type:
  • Location:
  • Job Type:
  • Experience:
    At least 6 year(s)
  • Date Posted:
  • Job ID:

Job Description

Job Summary
The IT Security Analyst Senior is responsible for the daily operation, maintenance, execution and enhancement of security and compliance processes and procedures with support and direction.  Provides standard solution toolset as part of tracking, handling and resolution of detected and suspected information security and compliance events.  Enables improvement in response to compliance and audit requests through gap capture and automation as part of request handling and response.  Takes technical and/or professional leadership role during engagements supporting operational and strategic efforts in Information Security and Information Technology organizations.  Sustains and grows improvements in security and compliance processes through analysis and reporting via status reports and escalation of events.
Principal Accountabilities
  • Execute processes in accordance with defined goals and within defined rules and agreement, driving toward constant improvement in capabilities and results, reduction in time investment; automation and integration.
  • Design information security and compliance solutions to address known gaps, generating basic required implementation work steps and executing/delegating execution to complete implementation.
  • Manage Security and Compliance through identification of known problems, development and/or selection of optimal processes and tools for resolution, and execution with delegation.
  • Manage workload through long-term time management planning and commitment on tasks and workflows.
  • Utilize existing information security and compliance tools and the supporting toolsets that enable security and compliance.
  • Identify and resolve gaps in capabilities by developing custom and/or automation tools to meet security/compliance needs.
  • Utilize Risk as a means of defining and prioritizing problems for resolution, performing system and process risk assessments.
  • Work with a provided suite of information gathering tools for security and compliance incident management, and able to adapt/expand tools for improved results.
  • Develop and implement controls in support of system security acceptance processes in support of government-defined security management programs.
  • Act as direct responsible party to assigned information system security manager; capable of assuming role as interim during position vacancy or temporary events.
  • Maintain compliance with established security and compliance controls through execution, tracking, gap identification, and constant process improvement.
  • Provide weekly status reports documenting workload with key metrics, and assigned tasks with status, working projects and initiatives with status and associated staff.
  • Escalation of security or compliance problems on an as-needed, as required basis.
  • Identify and track targets of opportunity for evaluation, review and/or improvement within Information Security, Compliance and Information Technology.
  • Investigate and evaluate new technologies to address current and future information security and compliance needs; perform requirements capture; perform solution review and comparison
  • Participate and lead design, planning, implementation and support of security services and systems
  • Actively engage with Information Security staff and senior leadership as lead and lead support on strategic and implementation initiative.
  • Consult with management on security objectives, primary concerns and areas of specific action
  • Work consistently toward long-term goals in an adaptive, fluid environment.
  • Provide detailed, focused, event driven information to senior Information Security leadership.

Knowledge & Skills
  • Full understanding as to the capabilities and requirements of core functional areas as they relate to Information Security and Compliance.
  • Capable of delivering solution designs to meet specific security or compliance needs.
  • Capable of adapting knowledge in specific functional areas to other areas for staff and process integration and support.
  • Ability to optimize and execute task-based processes within a set of given functional areas.
  • Ability to perform advanced work on supporting services and functions such as requirements planning, task planning, process optimization, process certification, automation.
  • Understanding of Risk and the elements that define risk, ability to identify and assess risk elements for processes and services.
  • Ability to utilize Risk as a means to set design and implementation requirements; and for security and compliance operational process and requirement execution.
  • Understanding of functional areas enabling interpretation of solution requirements:
    • Infrastructure: Servers, Storage, Databases, Networks, Clients.
    • Systems and Services: Applications, Identity Access Management, Information Management, Risk Management, Vulnerability Management, Penetration Testing, Compliance Management.

Experience & Education
  • High school degree or equivalent.
  • Mid-level certifications from organizations such as CompTIA (Security+), Microsoft (MCTS), Cisco (Professional) or equivalent education or training required.
  • Senior-level certifications from organizations such as ISC2 (CISSP), ISACA (CISA, CISM), GIAC, or equivalent education preferred.
  • 6+ years experience in Information Technology or Compliance and Audit; with at least 3 years of direct responsibilities for Information Security or Information Audit/Compliance.

Physical Requirements/Working Environment
  • Works in normal office environment.