RDX is recruiting for an IT Security Analyst to join our team in Warrendale, PA. As a member of our multi-discipline security team the successful candidate will provide operational security and audit support services in support of our information security program. Responsibilities include system integration, ongoing management, and support of RDX's security infrastructure. Perform network security monitoring in order to detect and respond to potential cyber security incidents impacting the enterprise. You will ensure that the events are properly identified, analyzed, communicated, defended against and reported on.
Essential Duties and Responsibilities include experience with:
Responsible for the operations and maintenance of managed security components and devices including: Snort IDS/McAfee IPS, Nextpose, Splunk, Secret Server, Metasploit, McAfee ePolicy Orchestrator(Antivirus, DLP and Endpoint), McAfee Database Activity Monitoring
Performs in-depth system and network analysis to identify risks and design flaws.
Participates in the identification, reporting, and resolution of serious security violations; assists with maintaining systems to protect data from unauthorized users and anticipated or unanticipated risks.
Assists in publishing, monitoring, and mandating information and computer security policies and security awareness information and programs.
Supports the scheduling of and supervision of periodic network security assessments across multiple platforms and/or distributed networks.
Performs security resource and access rule maintenance. Utilizes security monitoring and violation reports that identify any attempt to access unauthorized materials.
Participates in technical evaluations of enterprise security access control products.
Ensures adherence to SSAE16 and PCI compliance objectives.
Assist in the development of DR technical strategies for IT applications and services
Prepares and maintains documentation of network and system baseline configurations
Assists the security and infrastructure teams with the maintenance and implementation of a comprehensive Business Continuity and Disaster Recovery Plan
Maintains awareness of company network structure, including basic understanding of LAN and WAN topologies, servers, firewall and router placements, operating systems and network segmentation.
Develops, optimizes, and periodically tests security incident and response program
Implements, measures and reports KPIs associated with the state of information security; reporting on Security performance against established programs to senior leadership.
Review Information Assurance Vulnerability Alerts (IAVA) and other Cyber Security bulletins and advisories such as US-CERT for specific information security threats.
Assists in the development, implementation and enforcement of organization-wide security risk assessment and control standards, policies and procedures.
Implements and oversees the maintenance and upgrades of the Information Security infrastructure solutions in a qualitative, timely, and cost efficient way.
Required Education and Experience
Roles at this level typically require a university/College degree with 1-2 years of industry-relevant experience. Specific certifications are often required. In lieu of a degree, a comparable combination of education and experience may be considered.
Familiarity with network administration with a strong focus on network security.
Familiarity with various Operating Systems, High Availability, Database Platforms: including SQL Server, Oracle, Windows, Linux/Linux