Senior Security Analyst, Hybrid, West Orange
RWJBarnabas Health
- West Orange, NJ
- Permanent
- Full-time
- DNS/DHCP Configuration Management
- Endpoint Security Software Lifecycle Management
- Endpoint Encryption Lifecycle Management (software & hardware encryption)
- Web Proxy Configuration Management, inclusive of SSL interception
- Authentication and access control
- Firewall lifecycle management
- Security Infrastructure Maintenance
- Unified Threat Management inclusive of SIEM, and security analytics
- Endpoint Security Posture/Reporting/Metrics collection
- Public Key Management inclusive of Published Root CA.
- Second Factor Authentication Management
- Information security Incident Response
- 3-5 years in a Cybersecurity role
- Bachelor’s Degree in IT or Science related field
- SANS Training/Certification in Blue Team
- Certified Ethical Hacker (CEH) certification
- CompTIA Security+ and Network+
- Must have or obtain within first year of employment:
- CCNA-Security
GICSP
GSEC- Enterprise
Security+ CE
CND
SSCPEssential Functions:
- Support security logging processes and projects. This includes log collection, aggregation, and retention of logs.
- Supporting underlying infrastructure of the Unified Threat Management environment including but not limited to upgrades, patches and resource management.
- Perform administration, management, configuration, testing, and integration tasks related to Unified Threat Management.
- Research, analyze and understand log sources utilized for the purpose of security monitoring, particularly security and networking devices.
- Develop and maintain an inventory of RWJBarnabas Health's information assets including internal and external applications to be referred to for scheduled security testing.
- Gain proficiency with Enterprise Network Access Control Systems
- Gain experience working with legal, audit and compliance staff. Gain experience developing policies, procedures, standards and guidelines.
- Gain experience with common information security management frameworks, such as International Standards Organization (ISO) 17799/27001, the IT Infrastructure Library (ITIL) and National Institute of Science. and Technology (NIST) Cybersecurity Framework
- Become familiar with applicable legal and regulatory requirements, including, but not limited to, the U.S. Sarbanes-Oxley Act, the U.S. Health Insurance Portability and Accountability Act (HIPAA), NIST Cybersecurity Framework (CSF), NIST Compliance Framework 800-53.
- Become proficient in performing changes to Firewall Technologies such as Egress Firewalls, Microsegementation on Private Cloud and Public Cloud Infrastructures.
- Gain excellent technical knowledge of mainstream operating systems (for example, Microsoft Windows and Unix/Linux) and a wide range of security technologies, such as network security appliances, anti-malware (malicious software) solutions, automated policy compliance and desktop security tools, web security, mail security
- Assist in security operations incident response as needed.
- Paid Time Off (PTO)
- Medical and Prescription Drug Insurance
- Dental and Vision Insurance
- Retirement Plans
- Short & Long Term Disability
- Life & Accidental Death Insurance
- Tuition Reimbursement
- Health Care/Dependent Care Flexible Spending Accounts
- Wellness Programs
- Voluntary Benefits (e.g., Pet Insurance)
- Discounts Through our Partners such as NJ Devils, NJ PAC, Verizon, and more!