Doozer Software’s IT staffing division is currently assisting one of our customers in a search for an IT Security Analyst that will support the implementation and on-going support & administration of their DLP (Data Loss Protection) System environment.  This is a 6 month consulting engagement that has potential for renewal.

Responsibilities:

• Support the implementation and on-going support & administration of Database Security & Configuration Management system
• Assess procedures to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access, modification or destruction.  Make improvement recommendations
• Ensures compliance with organizational security rules and standards
• Ensure compliance with internal application security controls
• Conduct research to keep abreast of latest security issues
• Prioritize remediation of gaps based on internal and external audits
• Prepare security and compliance reports by collecting, analyzing, and summarizing data
• Support of SOX Audit and PCI by collecting and tracking requested evidence by Auditors
• Assist in planning and execution of vulnerability testing for application systems and the network environment
• Assist in providing support of the enterprise vulnerability management program

• Proactively work with the platform managers to resolve weaknesses and security incidents identified within the DLP system  
• Proactively work with the platform managers to resolve weaknesses in configuration and security definitions within the Database systems
• Proactively review our environment to determine if there are any gaps in our SOX, PCI or security controls
• Using installed tools and services identify security vulnerabilities
• Take action to ensure reported vulnerabilities are remediated in a timely manner as approved by management
• Work with other staff members as needed to remediate security weaknesses & vulnerabilities 
• Review LAN/WAN changes submitted for update to the production environment
• Review Application Changes to ensure a scan is performed when required

Preferred Experience:

·       Experience with DLP technologies strongly desired/preferred

·       Experience with scanning tools desired/preferred

·       Be familiar with administering user security solutions.

·       Working knowledge of information systems security standards and practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling)

·       Security knowledge of one or more of the following platforms: Mainframe/Windows/Linux

·       Ability to interpret information security data and processes to identify potential compliance issues

·       Ability to quickly understand security systems in order to identify and validate security requirements