Logo
TEKsystems

Security Analyst Job at TEKsystems in Seattle

TEKsystems, Seattle, WA, US

Job Description

Job Description

Seeking a Security Analyst for a new Digital Security team that is being built out. In this role you'll be working in concert with the Enterprise Security Team and Digital Team to drive change across their e-commerce platform. You'll work with the other engineers and architects to assess threats, conduct threat modeling exercises, validate vulnerabilities, and hunt for new ones.

The Security Analyst monitors the SIEM and responds to alerts, notifications, and threats. This position identifies, investigates, escalates, and remediates security incidents as well as preparing reports and documentation for the security team.

Responsibilities:
· Monitor SIEM, responding and reporting as needed
· Provide daily, weekly, and monthly security reports to management.
· Provide oversight, and review for security & system administration procedures.
· Recommend enhanced controls or procedures to minimize or eliminate risk.
· Ensure projects, programs, and initiatives adhere to documented security requirements.
· Complete security assessments on upcoming IT projects.
· Evaluate third party vendors for potential partnerships.

Requirements:
· Must have knowledge and current experience in Information Security, with a focus on network, desktop, database, application, e-commerce, cloud and business process security.
· Must have a demonstrable understanding of the NIST Cyber Security Framework and be familiar with PCI-DSS and SOX.
· Knowledge and experience in E-commerce security
· Degree in Computer Science, MIS, or other related technology field is preferred

1) 3+ years' experience as a Security Analyst with a specific focus on application, web, e-commerce security. Specifically, experience providing security reporting, security assessments, and other security procedural overview in these areas. (This person will need to come from a development background and know coding languages to have the depth of experience required on the web-apps side).

2) Demonstrable understanding of the NIST Cyber Security Framework and be familiar with PCI-DSS and SOX (able to articulate this in an interview and explain examples of where and how this knowledge was used in previous work experience)

3) Familiarity with e-commerce/retail specific security. Knowledge and experience in e-commerce specific compliance/procedures will be preferable.