Principal Information Security Analyst - Mountain View, CA

URL: https://symantec.wd1.myworkdayjobs.com/en-US/careers/job/USA---Californi...

Job Description

The candidate will play an integral role in protecting information assets and systems within the WSS Business Unit and drive security improvement efforts. They will work across the internal community to promote awareness and the critical need for various IT Compliance efforts and initiatives.

Responsibilities

Coordinate and execute Security projects.

  • Responsible for driving both technical projects and tactical requirements to accomplish ongoing security initiatives, improvements, and roadmap within the WSS environment. This includes research, technical setup, project support and tactical implementation of systems and controls as required.
  • Audit security controls for compliance.
  • Technical point of contact regarding adherence to compliance controls impacting the security of the WebSite Security environment, such as WebTrust for CA, FISMA, FedRAMP, SSAE16, PCI, SOX, and company guidelines. This includes developing test plans, promoting control awareness, demonstrating evidence and compliance levels, and implementing remediation plans as applicable.
  • Manage and monitor security systems.
  • Responsible for the monitoring of security applications within the environment. This includes establishing policy configurations, identifying and coordinating patch efforts, identifying incidents that require investigation, and initiating remediation. Such security systems include vulnerability management, intrusion detection, compliance monitoring, and log monitoring.
  • Evaluate and recommend security tools.
  • Review architectural designs and project initiatives to evaluate compliance to established security standards.
  • Respond to security incidents and initiate remediation.
  • Identify and escalate security risks within the organization.

Qualifications

Candidates with experience working for a service provider will be given preference.

  • 6-8 years of related security experience
  • Linux, Unix, and Windows OS moderate to expert knowledge
  • Network - moderate knowledge - Juniper/Cisco preferred
  • Incident Response and/or Remediation experience
  • Experience implementing/maintaining compliance frameworks
  • Understands the role of security devices such as NIDS/NIPS/FWs.
  • Experience with network and system scanning tools such as vulnerability scanners.
  • One or more of the following certifications: CISSP, CISM, GIAC, CEH, Security +, or equivalent
  • Good oral and written communication skills
  • US Citizenship Required