Troops to Energy Jobs

Job Information

Southwest Gas Corporation Senior Security Analyst in Las Vegas, Nevada

The Senior Security Analyst will focus on monitoring, detecting, analyzing,

and triaging cyber incidents. This includes adjustments to cyber solutions to improve detection and containment capabilities, as well as conducting forensic investigations in support of Legal Affairs.

This position may provide task direction for others on assigned projects of any complexity and scope.

  • Analyze security controls and systems policy configurations

  • Evaluate and coordinate security best practices in the management of threat and vulnerability management, identity and access management, data loss prevention and compliance

  • Identify security requirements, using methods that may include risk and business impact assessments when working with business units and other risk functions

  • Investigate and report to management concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance. May coordinate and/or perform control, penetration and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, with recommendation of remedial action

  • Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle

  • Works with the Information Services department and members of the information security team to identify, select and implement technical controls

  • Develops and documents security processes and procedures, and supports service-level agreements (SLAs) to ensure that security controls are managed and maintained

  • Assists with the execution of risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk and risk mitigation strategies

  • Assists with the definition of security configuration and operations standards for security systems and applications networking and telecommunications equipment based security systems

  • Assists in the development and validation of baseline security configurations for operating systems

  • Provides second- and third-level support and analysis during and after a security incident

  • Develops standards and department procedures

  • Provides input/oversight in the department’s activities/responsibilities including planning, scheduling, staffing, monitoring, traveling and reporting

  • Participates in security investigations and compliance reviews, as requested by internal, external auditors or compliance/regulatory agencies

  • Monitors daily or weekly reports and security logs for unusual events and acts as a liaison between incident response leads and subject matter experts

  • Works with the information security governance process to define control recommendations that are both efficient and effective

  • Maintains an awareness of existing and proposed security-standard-setting groups, state and federal legislation and regulations pertaining to information security

  • Identifies regulatory changes that will affect information security policy, standards and procedures, and recommends appropriate changes

  • Assists in the development of security architecture and security policies, principles and standards

  • Participates and provides guidance for security activities in the system development life cycle (SDLC) and application development efforts

  • Participates in organizational projects, as required

  • Perform related duties and responsibilities as assigned

  • Regular and predictable attendance is a condition of employment and is an essential function of the job

The ideal candidate would be in a leadership position within a Security Operations Center (SOC) with five years of collective relevant work experience in the following areas:

  • Administration and use of a SIEM solution to include experience in correlating alerts.

  • Development and deployment of IPS and IDS rules.

  • Development and management of Data Loss Prevention (DLP) policies

  • Network Forensics (Threat Hunting)

  • Malware Analysis and Remediation

  • First Response and Security Incident Handling

  • E-Discovery and Digital Forensics.

  • Threat Intelligence gathering and implementation into a Security Solution.

Bachelor of Science degree in Information Systems, Management Information Systems, Computer Science, Information Security, or maintains at least one of following active certifications (CISSP, GCHI, GCIA, CEH).

Preferred experience includes Management of a Security Operations Maturity Roadmap, Develop Executive Security Reports and Presentations, Mentoring Analysts, and Develop Key Performance Indicators.

$90,840 - $113,550

PAR: 2020-4685

External Posting End Date: 9/29/2020

Street: Corporate

External Company Name: Southwest Gas Corporation

External Company URL: www.swgas.com

Post End Date: 9/30/2020

Telecommute: No

Position Information (Text Only): The Senior Security Analyst will focus on monitoring, detecting, analyzing, and triaging cyber incidents. This includes adjustments to cyber solutions to improve detection and containment capabilities, as well as conducting forensic investigations in support of Legal Affairs. This position may provide task direction for others on assigned projects of any complexity and scope.

DirectEmployers