Birmingham Water Works
IT Information Security Analyst
Birmingham Water Works, Birmingham, Alabama, United States, 35275
Job Description
Job Description
General Responsibilities
Responsible for constantly detecting and preventing cyber threats to the company computing environment. Identify weaknesses of the company computing infrastructure (software, hardware, networks) and find creative ways to protect it. Plan, implement, upgrade, or monitor security measures to protect computer networks and information. Ensure appropriate security controls are in place to safeguard digital files and vital electronic infrastructure. Serves as an internal company lead for responding to business-impacting computer security breaches and viruses. Night and weekend hours as needed.
Essential Job Functions
Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs
Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated
Plan, implement and upgrade security measures and controls
Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and destruction
Maintain data and monitor security access
Perform vulnerability testing, risk analyses and security assessments
Perform risk assessments and execute tests of the data processing system to ensure the functioning of data processing activities and security measures
Conduct internal security audits
Anticipate security alerts, incidents, and disasters and reduce their likelihood
Collaborate technically with the infrastructure team to manage the network, intrusion detection, prevention systems and encryption measures
Analyze security breaches to determine the root cause
Recommend and install appropriate tools and countermeasures
Define, implement, and maintain corporate security policies
Collaborate with the appropriate BWW areas to train fellow employees in security awareness and procedures
Coordinate security plans with outside vendors
Respond to eDiscovery, data collection queries, and digital forensics requests
Work an on-call rotating schedule outside the regular schedule on a rotating basis
Maintain and protect sensitive and private information by keeping employee records confidential in accordance with HIPAA, local, state and federal laws and regulations
Ensures that PHI/ePHI of employees, plan participants, patients, and other assigned individuals are maintained and transmitted securely and legally
Perform all work safely in accordance with established safety policies and procedures Comply with all safety and health standards and guidelines issued by management
Perform other duties as assigned.
Education
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field required.
Certifications
Valid Driver’s License required
CEH Certified Ethical Hacker (Highly Preferred)
ECSA EC-Council Certified Security Analyst (Highly Preferred)
GSEC/GCIH/GCIA/GIAC Security Certifications (Highly Preferred)
CISSP Certified Information Systems Security Professional (Highly Preferred)
Experience
Five (5) years of experience, specifically in a security analyst job for a computing infrastructure environment for a medium to large company required.
Key areas of experience required:
Penetration testing and vulnerability testing & remediation
Anti-virus and anti-malware
TCP/IP, computer networking, routing and switching
Firewalls, proxies, IDS, IPS, and security appliances
Windows and Linux operating systems
Network protocols and packet analysis tools
Comprehension of development & scripting languages (C#, VB, Python, C, .NET)
Cloud computing
SaaS models
Security Information and Event Management (SIEM), Log analysis, Event collection & correlation
Incident response and handling
Technical writing
Certificates, Licenses, Registrations:
Valid driver’s license required
The following certifications are highly preferred:
CEH Certified Ethical Hacker
ECSA EC-Council Certified Security Analyst
GSEC/GCIH/GCIA/GIAC Security Certifications
CISSP Certified Information Systems Security Professional
Supervision
None
Physical Demands
Ability to stand, walk or sit for extended periods
Reaching by excreting hand(s) or arms(s) in any direction
Finger dexterity is required to manipulate objects with fingers rather than with whole hand(s) or arm(s), for example, using a keyboard
Communication skills using the spoken word
Ability to see within normal parameters
Ability to hear within normal parameters
Ability to move about
Ability to lift 25 pounds
Work Environment
Moderate noise (business office)
Night and weekend hours as needed
Exposed to cold temperatures in the data center
Occasionally visit job sites, in plants and outdoors, exposed to extreme hot/cold/wet weather conditions
Company Description
About Birmingham Water Works
The primary focus at Birmingham Water Works is to provide our customers with the highest quality water possible at the most affordable rates. Since 1951, the company has met this goal successfully, and is a highly regarded leader in the water purification industry.
The people of Birmingham elected to establish an independent Water Board in 1950, rather than have a water system controlled by City Hall. Good source water is the result of the Birmingham Water Works’ aggressive environmental protection policy. While water systems nationwide are regulated by provisions of the Environmental Protection Agency, Birmingham Water Works has always been a good steward of the environment since its creation.
Company Description About Birmingham Water Works\r\nThe primary focus at Birmingham Water Works is to provide our customers with the highest quality water possible at the most affordable rates. Since 1951, the company has met this goal successfully, and is a highly regarded leader in the water purification industry.\r\n\r\nThe people of Birmingham elected to establish an independent Water Board in 1950, rather than have a water system controlled by City Hall. Good source water is the result of the Birmingham Water Works’ aggressive environmental protection policy. While water systems nationwide are regulated by provisions of the Environmental Protection Agency, Birmingham Water Works has always been a good steward of the environment since its creation.
General Responsibilities
Responsible for constantly detecting and preventing cyber threats to the company computing environment. Identify weaknesses of the company computing infrastructure (software, hardware, networks) and find creative ways to protect it. Plan, implement, upgrade, or monitor security measures to protect computer networks and information. Ensure appropriate security controls are in place to safeguard digital files and vital electronic infrastructure. Serves as an internal company lead for responding to business-impacting computer security breaches and viruses. Night and weekend hours as needed.
Essential Job Functions
Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs
Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated
Plan, implement and upgrade security measures and controls
Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and destruction
Maintain data and monitor security access
Perform vulnerability testing, risk analyses and security assessments
Perform risk assessments and execute tests of the data processing system to ensure the functioning of data processing activities and security measures
Conduct internal security audits
Anticipate security alerts, incidents, and disasters and reduce their likelihood
Collaborate technically with the infrastructure team to manage the network, intrusion detection, prevention systems and encryption measures
Analyze security breaches to determine the root cause
Recommend and install appropriate tools and countermeasures
Define, implement, and maintain corporate security policies
Collaborate with the appropriate BWW areas to train fellow employees in security awareness and procedures
Coordinate security plans with outside vendors
Respond to eDiscovery, data collection queries, and digital forensics requests
Work an on-call rotating schedule outside the regular schedule on a rotating basis
Maintain and protect sensitive and private information by keeping employee records confidential in accordance with HIPAA, local, state and federal laws and regulations
Ensures that PHI/ePHI of employees, plan participants, patients, and other assigned individuals are maintained and transmitted securely and legally
Perform all work safely in accordance with established safety policies and procedures Comply with all safety and health standards and guidelines issued by management
Perform other duties as assigned.
Education
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or related field required.
Certifications
Valid Driver’s License required
CEH Certified Ethical Hacker (Highly Preferred)
ECSA EC-Council Certified Security Analyst (Highly Preferred)
GSEC/GCIH/GCIA/GIAC Security Certifications (Highly Preferred)
CISSP Certified Information Systems Security Professional (Highly Preferred)
Experience
Five (5) years of experience, specifically in a security analyst job for a computing infrastructure environment for a medium to large company required.
Key areas of experience required:
Penetration testing and vulnerability testing & remediation
Anti-virus and anti-malware
TCP/IP, computer networking, routing and switching
Firewalls, proxies, IDS, IPS, and security appliances
Windows and Linux operating systems
Network protocols and packet analysis tools
Comprehension of development & scripting languages (C#, VB, Python, C, .NET)
Cloud computing
SaaS models
Security Information and Event Management (SIEM), Log analysis, Event collection & correlation
Incident response and handling
Technical writing
Certificates, Licenses, Registrations:
Valid driver’s license required
The following certifications are highly preferred:
CEH Certified Ethical Hacker
ECSA EC-Council Certified Security Analyst
GSEC/GCIH/GCIA/GIAC Security Certifications
CISSP Certified Information Systems Security Professional
Supervision
None
Physical Demands
Ability to stand, walk or sit for extended periods
Reaching by excreting hand(s) or arms(s) in any direction
Finger dexterity is required to manipulate objects with fingers rather than with whole hand(s) or arm(s), for example, using a keyboard
Communication skills using the spoken word
Ability to see within normal parameters
Ability to hear within normal parameters
Ability to move about
Ability to lift 25 pounds
Work Environment
Moderate noise (business office)
Night and weekend hours as needed
Exposed to cold temperatures in the data center
Occasionally visit job sites, in plants and outdoors, exposed to extreme hot/cold/wet weather conditions
Company Description
About Birmingham Water Works
The primary focus at Birmingham Water Works is to provide our customers with the highest quality water possible at the most affordable rates. Since 1951, the company has met this goal successfully, and is a highly regarded leader in the water purification industry.
The people of Birmingham elected to establish an independent Water Board in 1950, rather than have a water system controlled by City Hall. Good source water is the result of the Birmingham Water Works’ aggressive environmental protection policy. While water systems nationwide are regulated by provisions of the Environmental Protection Agency, Birmingham Water Works has always been a good steward of the environment since its creation.
Company Description About Birmingham Water Works\r\nThe primary focus at Birmingham Water Works is to provide our customers with the highest quality water possible at the most affordable rates. Since 1951, the company has met this goal successfully, and is a highly regarded leader in the water purification industry.\r\n\r\nThe people of Birmingham elected to establish an independent Water Board in 1950, rather than have a water system controlled by City Hall. Good source water is the result of the Birmingham Water Works’ aggressive environmental protection policy. While water systems nationwide are regulated by provisions of the Environmental Protection Agency, Birmingham Water Works has always been a good steward of the environment since its creation.